Difference between revisions of "Control"
Jump to navigation
Jump to search
(Created page with "==Definitions== === Official European Definition === === Other International Definitions === The combination of the probability of an event and its negative consequences. <r...") |
|||
Line 1: | Line 1: | ||
+ | This term is usually synomymous to the term "[[Countermeasure]]", "[[safeguard]]" or "[[mitigation]] control". | ||
==Definitions== | ==Definitions== | ||
=== Official European Definition === | === Official European Definition === | ||
Line 4: | Line 5: | ||
=== Other International Definitions === | === Other International Definitions === | ||
− | + | > | |
=== National Definitions === | === National Definitions === | ||
<!--Test test test.--> | <!--Test test test.--> | ||
==== US Definition ==== | ==== US Definition ==== | ||
− | |||
===Standard Definition=== | ===Standard Definition=== | ||
− | + | ==== ISO/IEC 27000:2014 ==== | |
− | + | Measure that is modifying [[risk]] <ref name="ISO27000-14"> [http://www.iso.org/iso/home/store/catalogue_ics/catalogue_detail_ics.htm?csnumber=63411 ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary]</ref> | |
− | + | The standard notes that: | |
− | + | * Controls include any process, policy, device, practice, or other actions which modify [[risk]]. | |
− | + | * Controls may not always exert the intended or assumed modifying effect. | |
Revision as of 21:00, 18 May 2014
This term is usually synomymous to the term "Countermeasure", "safeguard" or "mitigation control".
Contents
Definitions
Official European Definition
Other International Definitions
>
National Definitions
US Definition
Standard Definition
ISO/IEC 27000:2014
Measure that is modifying risk [1] The standard notes that:
- Controls include any process, policy, device, practice, or other actions which modify risk.
- Controls may not always exert the intended or assumed modifying effect.