Data and Information Inventory and Attributes - Risk attributes for the Data and Information Inventory

Data and Information Inventory and Attributes

Chapter 27. Risk attributes for the Data and Information Inventory

Risk attributes capture the specific governance risk factors associated with this Data and Information type beyond the overall Assessed Risk rating.

Attribute NameMaturityDescription and Notes

Key Risk Factors

[Multi-Value]

Walk

Description — The specific conditions or vulnerabilities driving the Assessed Risk rating for this Data and Information type.

Benefit(s) — Translates the overall risk rating into actionable remediation targets. A practitioner who reads the Key Risk Factors knows exactly what governance gaps to address.

Source — Manual.

Examples — No designated Owner; Multiple conflicting authoritative sources; No defined retention policy; Sensitive data with no encryption mandate; No quality thresholds defined; Referenced in integrations but not formally governed

Notes — Separate multiple risk factors with semicolons.

Copyright for the International Foundation for Information Technology (IF4IT): 2008 - Present

Legal Disclaimers
Share:
Contact Us → Subscribe →