This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Business Impact template"
From OWASP
Leocavallari (talk | contribs) |
Leocavallari (talk | contribs) |
||
Line 1: | Line 1: | ||
+ | Every '''[[Business Impact]]''' should follow this template. | ||
+ | |||
+ | {{Template:Business Impact}} | ||
+ | |||
Last revision (mm/dd/yy): '''{{REVISIONMONTH}}/{{REVISIONDAY}}/{{REVISIONYEAR}}''' | Last revision (mm/dd/yy): '''{{REVISIONMONTH}}/{{REVISIONDAY}}/{{REVISIONYEAR}}''' | ||
− | |||
− | |||
==Description== | ==Description== | ||
Line 36: | Line 38: | ||
* http://www.link1.com | * http://www.link1.com | ||
* [http://www.link2.com Title for the link2] | * [http://www.link2.com Title for the link2] | ||
− | |||
− | |||
− | |||
− | |||
− | |||
__NOTOC__ | __NOTOC__ |
Revision as of 15:05, 2 May 2008
Every Business Impact should follow this template.
This is a Business Impact. To view all business impact, please see the Business Impact page.
Last revision (mm/dd/yy): 05/2/2008
Description
A business impact is the damage that results from a successful security breach. This should be the highest level impact to the business, not a glorified technical impact.
- Start with a one-sentence description of the business impact
- Describe the damage done to the business - money, loss of life, reputation, loss of customers, compliance, legal exposure
- Is the damage immediate or spread over a time period?
Risk Factors
- Talk about the factors that govern this business impact
- Try to be clear about the factors that make this impact serious
Examples
Short example name
- A short example description, small picture, or sample code with links
Short example name
- A short example description, small picture, or sample code with links
Related Technical Impacts
References