APPENDIX E METHODOLOGIES, GUIDELINES AND TOOLS
The Collins English Dictionary defines a methodology as a way of proceeding or doing something, especially a systematic or regular one.
The discipline of risk management has its fair share of methodologies, some of which we describe here.
CORAS is an open-source risk management tool available from SourceForge without the additional scope included in SABSA (see Appendix E, SABSA). It consists of eight discrete steps, which follow the generic risk management principles.