Risk is like fire: If controlled it will help you; if uncontrolled it will rise up and destroy you.”
– Theodore Roosevelt

To win the battle against criminals, terrorists and other hostile adversaries looking to steal data or cripple an organisation it’s important to recognise and quantify any risks before they can be eliminated, or at least reduced.

Until now identifying and calculating risks has been more complicated than necessary, often expensive and frequently less accurate than desired.

Now there is RiskTree™, a methodology devised in conjunction with 2T Security and Help2InfoSec. This tried and tested process launched in 2014 is already in use with a number of public and private bodies along with departments within the UK and devolved parliaments.

Specially devised to quickly, accurately and economically identify potential risks within an organisation and provide solutions RiskTree™ is a valuable asset to any business sector, government department, military and law enforcement, including assessing up to CNI category 5 risks.

RiskTree™ works by examining the cost, complexity, consequences (CCC) and Return of Investment (ROI) for attackers, along with the likely financial, physical and reputation damage impact suffered by their victims. This method makes it possible to quickly establish levels of risk and take appropriate action to mitigate any hazard.

The process for generating RiskTree™ is shown in the diagram below.

RiskTree™ Process

Because it is logic based RiskTree™ can be used to model supply chain management, assess an engineering project, support a business case, test business decisions and ideas before committing any large investment, and help model the outcomes of law enforcement or military operations.

Our team members are Senior Security Cyber Risk Management specialist, Senior CESG Certified Practitioner, ex CLAS, CSA Star Auditor, and Accredited Cyber Essentials (ACE) Consultants. 360 Defence and our RiskTree™ partners can be engaged directly or to provide a ‘train the trainer ‘ course on how to use RiskTree™ to its full potential.

Call us today for more information or to arrange a demonstration.

0300 302 1 360

or email us at