Risk register
Total identifed risks: 16
of identified risks are addressed.
Mitigated
11
Transferred
1
Accepted
4
Monitoring Status
| Item | Description | Frequency | Status |
|---|---|---|---|
 ISMS Policies Last updated: February 2026 | All policies are reviewed at least once a year. | Annual | OK |
 Risk Assessment & Treatment Last updated: February 2026 | All identified risks are either mitigated, or provisionally accepted. | Annual | OK |
 Vendor Management Last updated: February 2026 | Vendors security posture is assessed prior to onboarding and periodically reviewed. | Quarterly | OK |
 IAM Reviews Last updated: February 2026 | Principle of least privilege is enforced. IAM is actively reviewed, and excessive access is revoked. | Quarterly | OK |
 Physical Security Last updated: February 2026 | Principle of least privilege is enforced. IAM is actively reviewed, and excessive access is revoked. | Monthly | OK |
 Incident Management Last updated: February 2026 | No incident reported in the past month. | Monthly | OK |
 Automated Backup Last updated: February 2026 | Data critical to business is safely preseerved according to 3-2-1 backup strategy. | Daily | OK |