This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Loss of healthcare information

From OWASP
Revision as of 18:54, 23 October 2008 by KirstenS (talk | contribs) (New page: {{Template:Stub}} Every '''Business Impact''' should follow this template. {{Template:Business Impact}} Last revision (mm/dd/yy): '''{{REVISIONMONTH}}/{{REVISIONDAY}}/{{REVISIONYEAR...)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.


Every Business Impact should follow this template.

This is a Business Impact. To view all business impact, please see the Business Impact page.


Last revision (mm/dd/yy): 10/23/2008

Description

A business impact is the damage that results from a successful security breach. This should be the highest level impact to the business, not a glorified technical impact.

  1. Start with a one-sentence description of the business impact
  2. Describe the damage done to the business - money, loss of life, reputation, loss of customers, compliance, legal exposure
  3. Is the damage immediate or spread over a time period?


Risk Factors

  • Talk about the factors that govern this business impact
  • Try to be clear about the factors that make this impact serious


Examples

Short example name

A short example description, small picture, or sample code with links

Short example name

A short example description, small picture, or sample code with links


Related Technical Impacts


References