A 20-person IT department in a mid-sized regional grocery retailer received a mandate from its Board of Directors to reapproach and increase its risk management activities. Using Info-Tech’s workshop and featured IT Risk Profile Tool, the grocery retailer was able to identify key areas of risk – Security & Compliance, and IT Governance & Operations – and develop a detailed plan to tackle risk mitigation.
Summary & Success
- Articulated and prioritized the client’s IT risks.
- Created a series of new projects to tackle the 31 top IT risk opportunities identified, including an outline of mitigation funding requirements.
- Developed a longer-term strategy for addressing future, less immediate areas of risk and preparing for audit.
To read more about this Info-Tech engagement, read this reprinted article published in ISACA’s COBIT Focus magazine (Volume 3, July 2013), Risk Assessment Management Using COBIT 5.