Sequential pattern mining for ICT risk assessment and management