Allows organisations to identify, assess and manage information risks, minimising the likelihood of information security incidents which can increase trust among customers and partners, which can improve an organisation's reputation. identifying potential threats and developing actions to mitigate them. The tool also helps organisations better manage risk and increase risk resilience.