ABSTRACT
The complexity and diversity of manifest risks in communications services and infrastructure has created a spider's web of interconnections that link to almost every conceivable commercial and governmental activity, as well as having huge social implications. In the SCRUM approach to risk assessments, there is a continuous process of risk assessment and re-assessment, reflecting the dynamic and fluid nature of our environment. Risks assessments need to include three primary types of analysis if they are to provide useful outputs in the modern world: needs analysis, dependencies analysis, and risk analysis. At the very least, risk management involves a series of interconnected cycles, each operating at different levels and speeds, but with each affecting how the others function. Risks are scored and the highest scoring risks are re-assessed most frequently. Lower scoring risks are assessed at correspondingly lower frequencies, but every area at risk is re-assessed at least once a year and any new risks identified are added.
