RiskAssessmentFramework
RiskAssessmentFramework copied to clipboard
Risk Rating Calculator Issue
It seems there is a mistake there where in the Threat Agent Factors, in the Skill Level , it’s 1 for “Security penetration skills” up to 9 –“No technical skills” where it supposed to be vice versa as it refers to the skills that the Threat Agent has The ease of exploit is evaluated separately as a stand alone factor. This factor refers to which skills the threat agent has and the higher the skills he/she has the higher likelihood we get.