When to use this
Use this template to assess remote working risk for a role, location type, activity, system, or information classification.
Related controls
Assessment
| Scenario | Asset/information | Threat | Vulnerability | Impact | Likelihood | Risk rating | Treatment/control | Owner |
|---|---|---|---|---|---|---|---|---|
| Home work with confidential data | TBD | Unauthorized viewing | Shared household space | TBD | TBD | TBD | Privacy screen, no printing, awareness | TBD |
| Public location work | TBD | Shoulder-surfing or theft | Public environment | TBD | TBD | TBD | Restrict data, no confidential calls, device lock | TBD |
Decision
| Decision | Value |
|---|---|
| Remote work approved? | Yes / No / conditional |
| Conditions | TBD |
| Review trigger | Role change / data change / incident / annual review |
| Evidence location | TBD |
- Template
- Iso27001
- Iso27005
- Remote working
- Risk
Note Metadata
Aliases: Remote Work Risk Assessment
Source: 90 Templates/Remote Working Risk Assessment.md
Related Notes
- Risk Assessment
- ISO 27001 A.5.12 - Classification of Information
- ISO 27001 A.5.15 - Access Control
- ISO 27001 A.6.7 - Remote Working
- A.6 People Controls MOC
- A.6.7 Audit Evidence Pack
- A.6 People Controls Implementation Guide
- A.6 People Controls Implementation Audit Risk Mapping
- A.6.7 Audit Checklist
- Remote Working Security Checklist
- Templates MOC