This document proposes a structured approach to transform baseline security non-compliances into useful inputs for risk analysis within EBIOS RM.
A non-compliance is not merely a “gap to be filled,” but a triggering factor likely to influence attack paths (Workshop 3), operational scenarios (Workshop 4), and/or contribute to the risk treatment plan (Workshop 5).

ClubEBIOS-MethodHelper-Workshop1-FM202502-ManageBaselineFindings-V1.0-EN
Download