Difference between revisions of "Business Impact template"

From OWASP
Jump to: navigation, search
(New page: __NOTOC__ ==Description== This is the structure of a Business Impact Article. ==Related Technical Impacts== ==References== <nowiki>Category:XYZ</nowiki> <nowiki>[[Category:XPT...)
 
 
(7 intermediate revisions by 2 users not shown)
Line 1: Line 1:
__NOTOC__
+
Every '''[[Business Impact]]''' should follow this template.
 +
 
 +
{{Template:Business Impact}}
 +
 
 +
Last revision (mm/dd/yy): '''{{REVISIONMONTH}}/{{REVISIONDAY}}/{{REVISIONYEAR}}'''
  
 
==Description==
 
==Description==
  
This is the structure of a Business Impact Article.
+
A business impact is the damage that results from a successful security breach. This should be the highest level impact to the business, not a glorified technical impact.
 +
# Start with a one-sentence description of the business impact
 +
# Describe the damage done to the business - money, loss of life, reputation, loss of customers, compliance, legal exposure
 +
# Is the damage immediate or spread over a time period?
  
  
==Related Technical Impacts==
+
==Risk Factors==
  
 +
* Talk about the [[OWASP Risk Rating Methodology|factors]] that govern this business impact
 +
* Try to be clear about the factors that make this impact serious
  
==References==
 
  
 +
==Examples==
  
<nowiki>[[Category:XYZ]]</nowiki>
+
===Short example name===
 +
: A short example description, small picture, or sample code with [http://www.site.com links]
 +
 
 +
===Short example name===
 +
: A short example description, small picture, or sample code with [http://www.site.com links]
 +
 
 +
 
 +
==Related [[Technical Impacts]]==
 +
 
 +
* [[Technical Impact 1]]
 +
* [[Technical Impact 2]]
 +
 
 +
 
 +
==References==
  
<nowiki>[[Category:XPTO]]</nowiki>
+
* http://www.link1.com
 +
* [http://www.link2.com Title for the link2]

Latest revision as of 09:49, 24 June 2008

Every Business Impact should follow this template.

This is a Business Impact. To view all business impact, please see the Business Impact page.


Last revision (mm/dd/yy): 06/24/2008

Description

A business impact is the damage that results from a successful security breach. This should be the highest level impact to the business, not a glorified technical impact.

  1. Start with a one-sentence description of the business impact
  2. Describe the damage done to the business - money, loss of life, reputation, loss of customers, compliance, legal exposure
  3. Is the damage immediate or spread over a time period?


Risk Factors

  • Talk about the factors that govern this business impact
  • Try to be clear about the factors that make this impact serious


Examples

Short example name

A short example description, small picture, or sample code with links

Short example name

A short example description, small picture, or sample code with links


Related Technical Impacts


References