{"id":96,"date":"2025-08-24T15:58:29","date_gmt":"2025-08-24T13:58:29","guid":{"rendered":"https:\/\/cybersecuritat.eu\/?p=96"},"modified":"2026-06-12T12:31:09","modified_gmt":"2026-06-12T10:31:09","slug":"lanalyse-de-risques","status":"publish","type":"post","link":"https:\/\/cybersecuritat.eu\/index.php\/fr\/2025\/08\/24\/lanalyse-de-risques\/","title":{"rendered":"L\u2019Analyse de Risques"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">Cet article s\u2019inscrit dans la partie Gouvernance de la cybers\u00e9curit\u00e9.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">M\u00e9thodologies d\u2019Analyse<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">L\u2019analyse de risques peut se baser sur diverses m\u00e9thodologies reconnues, comme EBIOS (ou EBIOS RM de l\u2019ANSSI), l\u2019ISO 27005, entre autres.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Objectifs et Mani\u00e8re de Faire<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">L\u2019objectif principal de l\u2019analyse de risques est de permettre \u00e0 l\u2019\u00e9quipe charg\u00e9e de la cybers\u00e9curit\u00e9 d\u2019interagir \u00e9troitement avec les \u00e9quipes m\u00e9tiers. Cette collaboration est essentielle pour identifier la valeur cr\u00e9\u00e9e (ou la valeur d\u2019apport) de l\u2019entreprise (ou de la collectivit\u00e9), autrement dit, ce qui est critique pour son fonctionnement.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Une fois ces \u00e9l\u00e9ments de valeur identifi\u00e9s, l\u2019\u00e9quipe cybers\u00e9curit\u00e9, toujours gr\u00e2ce \u00e0 des \u00e9changes avec le m\u00e9tier, d\u00e9finira des sc\u00e9narios d\u2019attaques r\u00e9alistes et en \u00e9valuera les impacts potentiels.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Au terme de cette \u00e9valuation, il faut d\u00e9terminer le traitement appropri\u00e9 pour chaque risque. Il existe quatre options principales : l\u2019accepter, le r\u00e9duire, le transf\u00e9rer ou le refuser.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Les Diff\u00e9rents Traitements du Risque<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\">Accepter le Risque<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Le risque est accept\u00e9 si son niveau est jug\u00e9 conforme \u00e0 la politique et \u00e0 la tol\u00e9rance de l\u2019organisation.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Refuser le Risque<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Si le risque n\u2019est pas en ad\u00e9quation avec le p\u00e9rim\u00e8tre de l\u2019organisation, il peut \u00eatre refus\u00e9. Par exemple, une organisation peut refuser un risque li\u00e9 \u00e0 un serveur web si elle n\u2019en poss\u00e8de aucun.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">R\u00e9duire ou Transf\u00e9rer le Risque<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Quand un risque est applicable et que son niveau est inacceptable en l\u2019\u00e9tat, l\u2019organisation choisit entre le r\u00e9duire ou le transf\u00e9rer.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Transf\u00e9rer :<\/strong> Cela revient \u00e0 faire supporter le risque (juridiquement ou contractuellement) \u00e0 un tiers. Par exemple, le risque li\u00e9 \u00e0 la s\u00e9curit\u00e9 d\u2019un site web peut \u00eatre transf\u00e9r\u00e9 \u00e0 un prestataire externe \u00e0 qui est d\u00e9l\u00e9gu\u00e9e la cr\u00e9ation et le maintien du site en condition de s\u00e9curit\u00e9.<\/li>\n\n\n\n<li><strong>R\u00e9duire :<\/strong> L\u2019organisation cherche \u00e0 r\u00e9duire un risque quand son niveau n&rsquo;est pas acceptable en l&rsquo;\u00e9tat et que, dans ce cas, elle ne peut pas (ou ne veut pas) lo transf\u00e9rer. Elle va mettre en \u0153uvre des actions (qu&rsquo;elles soient de gouvernance ou techniques) pour faire baisser son impact ou sa gravit\u00e9, et ainsi r\u00e9duire son niveau jusqu\u2019\u00e0 un seuil tol\u00e9rable.<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Cet article s\u2019inscrit dans la partie Gouvernance de la cybers\u00e9curit\u00e9. M\u00e9thodologies d\u2019Analyse L\u2019analyse de risques peut se baser sur diverses m\u00e9thodologies reconnues, comme EBIOS (ou EBIOS RM de l\u2019ANSSI), l\u2019ISO 27005, entre autres. Objectifs et Mani\u00e8re de Faire L\u2019objectif principal de l\u2019analyse de risques est de permettre \u00e0 l\u2019\u00e9quipe charg\u00e9e de la cybers\u00e9curit\u00e9 d\u2019interagir \u00e9troitement [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"set","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[67],"tags":[74],"class_list":["post-96","post","type-post","status-publish","format-standard","hentry","category-governanca-fr","tag-ebios-rm"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>L\u2019Analyse de Risques - Cybersecuritat<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/cybersecuritat.eu\/index.php\/fr\/2025\/08\/24\/lanalyse-de-risques\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"L\u2019Analyse de Risques - Cybersecuritat\" \/>\n<meta property=\"og:description\" content=\"Cet article s\u2019inscrit dans la partie Gouvernance de la cybers\u00e9curit\u00e9. M\u00e9thodologies d\u2019Analyse L\u2019analyse de risques peut se baser sur diverses m\u00e9thodologies reconnues, comme EBIOS (ou EBIOS RM de l\u2019ANSSI), l\u2019ISO 27005, entre autres. Objectifs et Mani\u00e8re de Faire L\u2019objectif principal de l\u2019analyse de risques est de permettre \u00e0 l\u2019\u00e9quipe charg\u00e9e de la cybers\u00e9curit\u00e9 d\u2019interagir \u00e9troitement [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/cybersecuritat.eu\/index.php\/fr\/2025\/08\/24\/lanalyse-de-risques\/\" \/>\n<meta property=\"og:site_name\" content=\"Cybersecuritat\" \/>\n<meta property=\"article:published_time\" content=\"2025-08-24T13:58:29+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-06-12T10:31:09+00:00\" \/>\n<meta name=\"author\" content=\"stan\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"stan\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/cybersecuritat.eu\\\/index.php\\\/fr\\\/2025\\\/08\\\/24\\\/lanalyse-de-risques\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/cybersecuritat.eu\\\/index.php\\\/fr\\\/2025\\\/08\\\/24\\\/lanalyse-de-risques\\\/\"},\"author\":{\"name\":\"stan\",\"@id\":\"https:\\\/\\\/cybersecuritat.eu\\\/#\\\/schema\\\/person\\\/dd09a9551d25d269ef58a95bacd11ccf\"},\"headline\":\"L\u2019Analyse de Risques\",\"datePublished\":\"2025-08-24T13:58:29+00:00\",\"dateModified\":\"2026-06-12T10:31:09+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/cybersecuritat.eu\\\/index.php\\\/fr\\\/2025\\\/08\\\/24\\\/lanalyse-de-risques\\\/\"},\"wordCount\":398,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/cybersecuritat.eu\\\/#\\\/schema\\\/person\\\/dd09a9551d25d269ef58a95bacd11ccf\"},\"keywords\":[\"EBIOS RM\"],\"articleSection\":[\"governan\u00e7a\"],\"inLanguage\":\"oc\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/cybersecuritat.eu\\\/index.php\\\/fr\\\/2025\\\/08\\\/24\\\/lanalyse-de-risques\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/cybersecuritat.eu\\\/index.php\\\/fr\\\/2025\\\/08\\\/24\\\/lanalyse-de-risques\\\/\",\"url\":\"https:\\\/\\\/cybersecuritat.eu\\\/index.php\\\/fr\\\/2025\\\/08\\\/24\\\/lanalyse-de-risques\\\/\",\"name\":\"L\u2019Analyse de Risques - Cybersecuritat\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/cybersecuritat.eu\\\/#website\"},\"datePublished\":\"2025-08-24T13:58:29+00:00\",\"dateModified\":\"2026-06-12T10:31:09+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/cybersecuritat.eu\\\/index.php\\\/fr\\\/2025\\\/08\\\/24\\\/lanalyse-de-risques\\\/#breadcrumb\"},\"inLanguage\":\"oc\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/cybersecuritat.eu\\\/index.php\\\/fr\\\/2025\\\/08\\\/24\\\/lanalyse-de-risques\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/cybersecuritat.eu\\\/index.php\\\/fr\\\/2025\\\/08\\\/24\\\/lanalyse-de-risques\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"http:\\\/\\\/cybersecuritat.eu\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"L\u2019Analyse de Risques\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/cybersecuritat.eu\\\/#website\",\"url\":\"https:\\\/\\\/cybersecuritat.eu\\\/\",\"name\":\"Cybersecuritat\",\"description\":\"Lo prum\u00e8r site de cybersecuritat en occitan\",\"publisher\":{\"@id\":\"https:\\\/\\\/cybersecuritat.eu\\\/#\\\/schema\\\/person\\\/dd09a9551d25d269ef58a95bacd11ccf\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/cybersecuritat.eu\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"oc\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\\\/\\\/cybersecuritat.eu\\\/#\\\/schema\\\/person\\\/dd09a9551d25d269ef58a95bacd11ccf\",\"name\":\"stan\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"oc\",\"@id\":\"https:\\\/\\\/cybersecuritat.eu\\\/wp-content\\\/uploads\\\/2023\\\/07\\\/cropped-cropped-cybersecuritat-1.png\",\"url\":\"https:\\\/\\\/cybersecuritat.eu\\\/wp-content\\\/uploads\\\/2023\\\/07\\\/cropped-cropped-cybersecuritat-1.png\",\"contentUrl\":\"https:\\\/\\\/cybersecuritat.eu\\\/wp-content\\\/uploads\\\/2023\\\/07\\\/cropped-cropped-cybersecuritat-1.png\",\"width\":512,\"height\":323,\"caption\":\"stan\"},\"logo\":{\"@id\":\"https:\\\/\\\/cybersecuritat.eu\\\/wp-content\\\/uploads\\\/2023\\\/07\\\/cropped-cropped-cybersecuritat-1.png\"},\"sameAs\":[\"http:\\\/\\\/cybersecuritat.eu\"],\"url\":\"https:\\\/\\\/cybersecuritat.eu\\\/index.php\\\/author\\\/stan\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"L\u2019Analyse de Risques - Cybersecuritat","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/cybersecuritat.eu\/index.php\/fr\/2025\/08\/24\/lanalyse-de-risques\/","og_locale":"en_US","og_type":"article","og_title":"L\u2019Analyse de Risques - Cybersecuritat","og_description":"Cet article s\u2019inscrit dans la partie Gouvernance de la cybers\u00e9curit\u00e9. M\u00e9thodologies d\u2019Analyse L\u2019analyse de risques peut se baser sur diverses m\u00e9thodologies reconnues, comme EBIOS (ou EBIOS RM de l\u2019ANSSI), l\u2019ISO 27005, entre autres. Objectifs et Mani\u00e8re de Faire L\u2019objectif principal de l\u2019analyse de risques est de permettre \u00e0 l\u2019\u00e9quipe charg\u00e9e de la cybers\u00e9curit\u00e9 d\u2019interagir \u00e9troitement [&hellip;]","og_url":"https:\/\/cybersecuritat.eu\/index.php\/fr\/2025\/08\/24\/lanalyse-de-risques\/","og_site_name":"Cybersecuritat","article_published_time":"2025-08-24T13:58:29+00:00","article_modified_time":"2026-06-12T10:31:09+00:00","author":"stan","twitter_card":"summary_large_image","twitter_misc":{"Written by":"stan","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/cybersecuritat.eu\/index.php\/fr\/2025\/08\/24\/lanalyse-de-risques\/#article","isPartOf":{"@id":"https:\/\/cybersecuritat.eu\/index.php\/fr\/2025\/08\/24\/lanalyse-de-risques\/"},"author":{"name":"stan","@id":"https:\/\/cybersecuritat.eu\/#\/schema\/person\/dd09a9551d25d269ef58a95bacd11ccf"},"headline":"L\u2019Analyse de Risques","datePublished":"2025-08-24T13:58:29+00:00","dateModified":"2026-06-12T10:31:09+00:00","mainEntityOfPage":{"@id":"https:\/\/cybersecuritat.eu\/index.php\/fr\/2025\/08\/24\/lanalyse-de-risques\/"},"wordCount":398,"commentCount":0,"publisher":{"@id":"https:\/\/cybersecuritat.eu\/#\/schema\/person\/dd09a9551d25d269ef58a95bacd11ccf"},"keywords":["EBIOS RM"],"articleSection":["governan\u00e7a"],"inLanguage":"oc","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/cybersecuritat.eu\/index.php\/fr\/2025\/08\/24\/lanalyse-de-risques\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/cybersecuritat.eu\/index.php\/fr\/2025\/08\/24\/lanalyse-de-risques\/","url":"https:\/\/cybersecuritat.eu\/index.php\/fr\/2025\/08\/24\/lanalyse-de-risques\/","name":"L\u2019Analyse de Risques - Cybersecuritat","isPartOf":{"@id":"https:\/\/cybersecuritat.eu\/#website"},"datePublished":"2025-08-24T13:58:29+00:00","dateModified":"2026-06-12T10:31:09+00:00","breadcrumb":{"@id":"https:\/\/cybersecuritat.eu\/index.php\/fr\/2025\/08\/24\/lanalyse-de-risques\/#breadcrumb"},"inLanguage":"oc","potentialAction":[{"@type":"ReadAction","target":["https:\/\/cybersecuritat.eu\/index.php\/fr\/2025\/08\/24\/lanalyse-de-risques\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/cybersecuritat.eu\/index.php\/fr\/2025\/08\/24\/lanalyse-de-risques\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"http:\/\/cybersecuritat.eu\/"},{"@type":"ListItem","position":2,"name":"L\u2019Analyse de Risques"}]},{"@type":"WebSite","@id":"https:\/\/cybersecuritat.eu\/#website","url":"https:\/\/cybersecuritat.eu\/","name":"Cybersecuritat","description":"Lo prum\u00e8r site de cybersecuritat en occitan","publisher":{"@id":"https:\/\/cybersecuritat.eu\/#\/schema\/person\/dd09a9551d25d269ef58a95bacd11ccf"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/cybersecuritat.eu\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"oc"},{"@type":["Person","Organization"],"@id":"https:\/\/cybersecuritat.eu\/#\/schema\/person\/dd09a9551d25d269ef58a95bacd11ccf","name":"stan","image":{"@type":"ImageObject","inLanguage":"oc","@id":"https:\/\/cybersecuritat.eu\/wp-content\/uploads\/2023\/07\/cropped-cropped-cybersecuritat-1.png","url":"https:\/\/cybersecuritat.eu\/wp-content\/uploads\/2023\/07\/cropped-cropped-cybersecuritat-1.png","contentUrl":"https:\/\/cybersecuritat.eu\/wp-content\/uploads\/2023\/07\/cropped-cropped-cybersecuritat-1.png","width":512,"height":323,"caption":"stan"},"logo":{"@id":"https:\/\/cybersecuritat.eu\/wp-content\/uploads\/2023\/07\/cropped-cropped-cybersecuritat-1.png"},"sameAs":["http:\/\/cybersecuritat.eu"],"url":"https:\/\/cybersecuritat.eu\/index.php\/author\/stan\/"}]}},"_links":{"self":[{"href":"https:\/\/cybersecuritat.eu\/index.php\/wp-json\/wp\/v2\/posts\/96","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cybersecuritat.eu\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecuritat.eu\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cybersecuritat.eu\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecuritat.eu\/index.php\/wp-json\/wp\/v2\/comments?post=96"}],"version-history":[{"count":1,"href":"https:\/\/cybersecuritat.eu\/index.php\/wp-json\/wp\/v2\/posts\/96\/revisions"}],"predecessor-version":[{"id":97,"href":"https:\/\/cybersecuritat.eu\/index.php\/wp-json\/wp\/v2\/posts\/96\/revisions\/97"}],"wp:attachment":[{"href":"https:\/\/cybersecuritat.eu\/index.php\/wp-json\/wp\/v2\/media?parent=96"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecuritat.eu\/index.php\/wp-json\/wp\/v2\/categories?post=96"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecuritat.eu\/index.php\/wp-json\/wp\/v2\/tags?post=96"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}