1. What drives O&M cost?
<--- Score
2. How do your measurements capture actionable IT security risk assessment information for use in exceeding your customers expectations and securing your customers engagement?
<--- Score
3. How do you measure variability?
<--- Score
4. Have you included everything in your IT security risk assessment cost models?
<--- Score
5. How can you manage cost down?
<--- Score
6. How are costs allocated?
<--- Score
7. What does losing customers cost your organization?
<--- Score
8. Are the units of measure consistent?
<--- Score
9. Are the measurements objective?
<--- Score
10. What do people want to verify?
<--- Score
11. Are actual costs in line with budgeted costs?
<--- Score
12. What could cause you to change course?
<--- Score
13. How will your organization measure success?
<--- Score
14. What is the cause of any IT security risk assessment gaps?
<--- Score
15. What are allowable costs?
<--- Score
16. What are hidden IT security risk assessment quality costs?
<--- Score
17. Are you able to realize any cost savings?
<--- Score
18. Who pays the cost?
<--- Score
19. What harm might be caused?
<--- Score
20. Where is it measured?
<--- Score
21. Does the IT security risk assessment task fit the client’s priorities?
<--- Score
22. What is the total cost related to deploying IT security risk assessment, including any consulting or professional services?
<--- Score
23. How will costs be allocated?
<--- Score
24. What are the costs?
<--- Score
25. How do you verify and develop ideas and innovations?
<--- Score
26. How is performance measured?
<--- Score
27. What are the costs and benefits?
<--- Score
28. How will success or failure be measured?
<--- Score
29. How long to keep data and how to manage retention costs?
<--- Score
30. Did you tackle the cause or the symptom?
<--- Score
31. How do you aggregate measures across priorities?
<--- Score
32. How frequently do you track IT security risk assessment measures?
<--- Score
33. How do you quantify and qualify impacts?
<--- Score
34. What is measured? Why?
<--- Score
35. Which measures and indicators matter?
<--- Score
36. Has a cost center been established?
<--- Score
37. Do you have any cost IT security risk assessment limitation requirements?
<--- Score
38. What could cause delays in the schedule?
<--- Score
39. What measurements are possible, practicable and meaningful?
<--- Score
40. How will effects be measured?
<--- Score
41. What is the IT security risk assessment business impact?
<--- Score
42. Are the IT security risk assessment benefits worth its costs?
<--- Score
43. Will IT security risk assessment have an impact on current business continuity, disaster recovery processes and/or infrastructure?
<--- Score
44. What would it cost to replace your technology?
<--- Score
45. Was a business case (cost/benefit) developed?
<--- Score
46. What users will be impacted?
<--- Score
47. How do you measure success?
<--- Score
48. How can you measure the performance?
<--- Score
49.
