It’s a series of activities that make it possible to identify and categorize the company's assets that need to be protected, and highlight the risks associated with them.
The security assessment includes activities such as:
The result
of this work is a list of vulnerabilities that, in the light of logistical and economic considerations, nails down the critical points from which to develop a plan of action designed for a quick recovery of the minimum nominal functions of the systems in operation, or the achievement of the minimum required functionality in circumstances where these are not
present.