Develop a Cyber-security risk assessment program with a discussion of its applicability in a relevant case