Risk Identification

From CIPedia
Jump to navigation Jump to search

Definitions

European Definitions

ENISA

Risk Identification is the process to find, list and characterize elements of risk (refers to ISO/IEC Guide 73). [1]


European Project Definitions

CIPRNet project

The CIPRNet project [2] uses the following definition:

Risk identification is the process of finding, recognizing and describing risk.



National Definitions

Australia

Risk identification is the process of determining what can happen, why and how. [3]


Process of finding, recognizing and describing risks. [4]


Bosnia and Herzegovina

Identifikacija rizika je proces pronalaženja, prepoznavanja i opisivanja rizika. (ISO 31010) [5]



Canada

The process of finding,recognizing and recording risk. [6]

Processus de recherche, de reconnaissance et d’enregistrement de risques. [7]


Colombia

Identificatión del Riesgo: Proceso para encontrar, reconocer y describir el riesgo. [8]



Czech Republic

Identifikace rizik: Proces hledání, rozpoznávání a popisování rizik. [9]

Risk identification: Process of looking for, recognizing, and describing risks. [9]


Denmark

Risikoidentifikation har til formål at kortlægge de risici, der findes i kommunen. Risikoidentifikation er en proces, der indeholder: identification af risikoobjekter og identifikation af hændelser. [10]



Finland

Risk Identification is a part of Risk Analysis through which risks are identified and the probability of a damaging event is preliminary estimated.

Riskin kartoitus / riskikartoitus: Riskianalyysin osa, jonka avulla tunnistetaan riskit ja alustavasti arvioidaan vahinkotapahtuman todennäköisyys. [11]


Luxembourg

Identification des risques: Processus de recherche, de reconnaissance et de description des risques. [12]



Netherlands

[Dutch] Risico-identificatie is het proces van opsporen, herkennen en beschrijven van risico’s. [13]



United States

DHS
Risk identification is the process of finding, recognizing, and describing potential risks. [14]


Standard Definition

ISO/IEC 27000:2014 and ISO 31000:2009

The standard defines risk assessment as

the "process of finding, recognizing and describing risks" [15] [16]. (based on the ISO Guide 73:2009[17])

  • Risk identification involves the identification of risk sources, events, their causes and their potential consequences.
  • Risk identification can involve historical data, theoretical analysis, informed and expert opinions, and stakeholders’ needs.

See also


Notes