​The main objective of this project is to explore and assess the main risks and threats that can cause breach for information systems and applications. Cybersecurity risk assessment is one of the crucial steps that can help to prevent cybersecurity attacks. Based on that, this work aims to apply the main phases of Cybersecurity risk assessment, which includes: (1) Identify information assets, (2) Assess the risk, (3) Analyze the risk, (4) Set security controls and (5) Monitor and review effectiveness. By applying these phases and steps, organizations can systematically assess and manage cybersecurity risks, enhancing their overall security posture and resilience against cyber threats. To analyze the proposed work, analytical hierarchical process (AHP) and SEM will be applied. The findings of this research will be useful for researchers and technicians on how to protect information systems using cybersecurity risk assessment. ​