Professional Documents
Culture Documents
Presented by ICB G
QUESTION
Choose your answer from the drop-down menu under 'Respon
Does your organisation have a wireless network, or do employees or customers access your in
locations?
Does anyone in your organisation take company-owned mobile devices (eg, laptops, smartph
either home or when travelling?
Does your organisation use Cloud-based software or storage?
Does your organisation have a 'bring your own device' (BYOD) policy that allows employees to
use or on a company network?
Are any employees allowed access to administrative privileges on your network or computers
Does your organisation have critical operational systems connected to a public network?
Does anyone in your organisation use computers to access bank accounts or initiate money t
Does your organisation store sensitive information (eg, financial reports, trade secrets, intelle
designs) that could potentially compromise your organisation if stolen?
Does your organisation digitally store sensitive employee or customer information? This can i
numbers and financial information.
Is your organisation part of a supply chain, or do you have supply chain partners?
Does your organisation conduct business in foreign countries, either physically or online?
Has your organisation ever failed to enforce policies around the acceptable use of computers,
Can the general public access your organisations building without the use of an ID card?
Is network security training for employees optional at your organisation?
Can employees use their computers or company-issued devices indefinitely without updating
Has your IT department ever failed to install antivirus software or perform regular vulnerabilit
Can employees dispose of sensitive information in unsecured bins?
Would your organisation lose critical information in the event of a system failure or other netw
Can employees easily see what co-workers are doing on their computers?
Has your organisation neglected to review its data security or cyber security policies/procedu
Yes
No
Unsure
Instructions
RESPONSE
SCORE
SCORE:
LEVEL OF RISK:
ed as one of the
ns of all sizes. The
ve created risks that
When cyber attacks
they can result in
ruptions, revenue
utation, and more.
sation is immune to
er liability insurance
y risk management