Zoho Sheet

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40

Data Center Security Audit

Important Note: The scoring in Sheet 3 - Vulnerability Questionnaire and Sheet 5 - Business Risk Quotient is out of 5. The higher the scores, the more risk to the data center. Conversely, low scores represent better security and reliability, and fewer risks.

Worksheet

Name

Business Impact Analysis

Weightings

Vulnerability Questionnaire

Probability Assessment

Business Risk Quotient

Audit Results

Final Report

Purpose

Used to identify the dollar impact that would occur due to breaches in security or reliability.

Determines the weighted scoring of categories within Sheet 3 - Vulnerability Questionnaire.

Designed to uncover the areas of greatest vulnerability that exist within the data center.

Determines the likelihood of a negative security event occurring in any of the 10 categories in Sheet 3 - Vulnerability Questionnaire.

Statement of the data center's condition of relative business risk.

Illustrates how a data center's Current State (in blue) ranks against its ideal Target State (in red), both of which are derived from Sheet 5 - Business Risk Quotient.

The Final Report automatically amasses and compiles all metrics - both Current and Target - as well as general recommendations for improvement.

Instructions

Follow the instructions given for each table.

If desired, type in new weightings in the areas shaded in gray. Base these numbers on the company's specific circumstances. If not, default weightings are used.

Carefully read the questions in each category. Answer each question according to the current state of the data center.

Select a number that best represents the chance of a negative security event occurring in the 10 categories in Sheet 3 - Vulnerability Questionnaire. Enter a percentage for each category.

No intervention required. Outputs from Sheets 1, 3, and 4 automatically calculate the Business Risk Quotient.

Note the Target State, which represents the minimum Business Risk Quotient level required to remediate data center vulnerabilities, according to their relative level of business risk.

Complete the specific tasks on the "Policy Amendment Recommendations" chart in order to improve security from its Current State to the Target State.

Outputs

Business Impact Rating, which is exported to Sheet 5 - Business Risk Quotient.

New weightings are automatically updated in Sheet 3 - Vulnerability Questionnaire.

Vulnerability Quotients for each category are automatically fed into the "Vulnerability" column in Sheet 5 - Business Risk Quotient.

Percentages are automatically exported into the "Probability" column of Sheet 5 - Business Risk Quotient.

Business Risk Quotient numbers represent the data center's Current State, which are then exported to Sheet 6 - Audit Results and Sheet 7 - Final Report.

None.

Introduction

1_ Business Impact Analysis

2_ Weightings

3_ Vulnerability Questionnaire

4_ Probability Assessment

5_ Business Risk Quotient

6_ Audit Results

7_ Final Report