AMSRO > Member services > Quality Assurance and Risk Management > Information Security and Data Management

Information Security and Data Management

Top 12 Risks Guideline

Based on the ISO 27001/2 Information Technology and Security Standards, the Top 12 Risks Guideline is an overview of an information security management system and identifies the main risk areas for research organisations and how they might impact on both internal and external operations.

The AMSRO Quality Committee has identified the four following key risk review areas: Communications, Operations, People and IT Assets Security that can be undertaken in conjunction with ISO 20252 to help ensure your organisation mitigates Information Technology risk. A full copy of the guideline is available below.

AMSRO – TOP 12 – Information Technology & Security Risk Management