Our templates are customized based on best practices and standards for Risk Assessment. This package has risk assessment forms, guidelines, templates, worksheets, and matrix. Our risk assessment template will facilitate you to comply with following regulations and standards like SOX, HIPAA, Basel II FDA, FISMA, FFIEC, ISO 27002, COOP & COG. These risk assessment templates can be utilized by Healthcare organizations, educational organizations, IT departments of different companies, financial institutions, security consulting companies, manufacturing company, law firms, servicing companies, pharmaceuticals & biotechnology companies, telecommunication companies and others

Feel free to request a sample before buying.

List of documents in this Risk Assessment templates package:

  1. Conducting a Risk Assessment Guide (15 pages)
  2. Risk Assessment Worksheet (17 pages)
  3. Preventative Measures (6 pages)
  4. Example Completed Risk Assessment Worksheet (17 pages)

Cost: $90

Conducting a Risk Assessment Guide


The purpose of this document is to assist the business conduct a Risk Assessment, which detect current vulnerabilities, risks and threats to the business and put into practice procedures to eradicate or lessen those potential risks. This document endows with guidance on how to conduct the Risk Assessment, evaluate the information that is assembled and put into practice strategies that will allow the business to manage the risk. The following documents are available to help the business complete the assessment:

  1. Risk Assessment Template
  2. Risk Assessment Worksheet
  3. Facility RA Findings Report
  4. Executive RA Findings Report
  5. Examples of Preventative Measures

The Risk Assessment is merely part of an overall Business Assessment. A Business Assessment is separated into two constituents, Risk Assessment and Business Impact Analysis (BIA). The Risk Assessment is intended to quantify current vulnerabilities to the business’s environment, while the Business Impact Analysis evaluates probable loss that could result during a disaster. To take full advantage of the Risk Assessment, a Business Impact Analysis should also be completed

Table of Contents of Conducting a Risk Assessment




Objectives of the Risk Assessment
Risk Assessment Process
What Should Be Included?
Steps to Follow


Identifying Risks / Threats
Probability of Occurrence
Vulnerability to Risk
Potential Impact
Preventative Measures in Place
Insurance Coverage
Past Experiences


Review Interview Notes
Follow-Up Meetings
Report the Results


Creation of Executive Report
Presenting the Results
Next Steps


Senior Management Support
Effective Data Gathering Tools
Key Resources
Critical Data
Executive Report


Appendix A: Risk Assessment Survey
Appendix B: Risk Assessment Worksheet
Appendix C: Facility Risk Assessment Report
Appendix D: Executive Risk Assessment Report
Appendix E: Examples of Preventative Measures


Preventative Measures

The following list consists of examples of preventative measures that can be put into practice by the company to alleviate the potential risks that at present exist. Some of these activities may be achieved easily, as to where some may take more time and more resources.

Natural Risks

These risks are usually associated with weather-related events: flooding, high winds, severe storms, tornado, hurricane, fire, high winds, snowstorms, and ice storms.

Risk / Threat

Preventative Measures

  1. Move large and heavy objects to the fall to prevent injury (from falling on people.)
  2. Equipment tie-downs are used on all critical computer equipment.
  3. Emergency power is available on-site.
  4. Earthquake construction guidelines have been adhered to so that damage can be minimized.
  5. Critical data and vital records should be backed up and sent offsite for storage.
  6. Staff should be trained in Earthquake evacuations and safety.


Man-Made Risks

These risks are usually associated with the man-made type of events: Bomb threats, vandalism, terrorism, civil disorder, sabotage, hazardous waste, work stoppage (internal/external), and computer crime.

Risk / Threat

Preventative Measures

Staff Productivity Risks
  1. Alternate sources of trained employees have been identified
  2. Proper training and necessary cross-training are conducted
  3. Files are backed up and procedures are documented
  4. The work areas are comfortable and safe


Environmental Risks

These risks are usually associated with exposures from surrounding facilities, businesses, government agencies, etc.

Risk / Threat

Preventative Measures

Hazardous Materials Plant

  1. There is a nightly backup of data processing electronic record and that backup is stored off-site
  2. The off-site backup facility is a sufficient distance away from this facility
  3. An alternate site has been identified for use in the event that this facility is unusable

To view a specific section of this document, please contact us at Bob@supremusgroup.com or call us at (515) 865-4591.