Risk Assessment/Risk Treatment - I favour asset-based risk assessment, will take guidance from ISO 31000. Elaborated on risk treatment options and communication with all stakeholders regarding the final results and noting their decisions.