Insider Threads (Unauthorized access to system – Misuse privilege - Blackmail - Browsing of proprietary information - Computer abuse, corrupted data Malicious code (e.g., virus, logic bomb, Trojan horse) Intrusion on personal privacy 

Work disruption or data loss, which affects productivity and security.  

Firewall, Traditional Antivirus and Basic Control 

1. Enable Firewall Policy. 
2. Enable EDR system 
3. Enable IDS/IPS 
4. Enable Security Group Policy in Active Directory 
5. Perform regular maintenance to prevent issues.  
6. Access Control: Limit device access and services to authorized users.  
7. Keep backups of important data.  
8. Monitoring: Track device performance to spot problems early.  

The chairman of risk management sub-committee in UTAS-SUR
Dr.Sami Al-Batashi, Phone: +968 9293 9604
Email: sami.albattashi@utas.edu.om

Risk Management Committee in UTAS-SUR

Medium

High

Medium

1. Isolate the affected device or user to prevent further damage or misuse.  
2. Fix the issue by repairing or replacing the device or addressing misuse or reimaging the system  
3. Restore normal operations, ensuring all data is safe and systems are functioning.  

By sending the final report explaining the problem causes and how we can mitigate next time.