Difference between revisions of "Residual Risk"

From CIPedia
Jump to navigation Jump to search
(Definitions)
Line 5: Line 5:
 
=== Other International Definitions ===
 
=== Other International Definitions ===
 
==== UNISDR ====
 
==== UNISDR ====
The risk that remains in unmanaged form, even when effective [[Disaster Risk|disaster risk]] reduction [[measure|measures]] are in place, and for which [[emergency]] response and recovery capacities must be maintained <ref> [http://www.unisdr.org/files/7817_UNISDRTerminologyEnglish.pdf 2009 UNISDR Terminology on Disaster Risk Reduction]</ref>. According to UNISDR, the presence of residual risk implies a continuing need to develop and support effective capacities for [[emergency services]], [[preparedness]],
+
{{definition|The risk that remains in unmanaged form, even when effective [[Disaster Risk|disaster risk]] reduction [[measure|measures]] are in place, and for which [[emergency]] response and recovery capacities must be maintained <ref> [http://www.unisdr.org/files/7817_UNISDRTerminologyEnglish.pdf 2009 UNISDR Terminology on Disaster Risk Reduction]</ref>.}}
[[response]] and [[recovery]] together with socio-economic policies such as safety nets and [[Risk Transfer|risk transfer]] mechanisms.
+
<big>According to UNISDR, the presence of residual risk implies a continuing need to develop and support effective capacities for [[emergency services]], [[preparedness]],[[response]] and [[recovery]] together with socio-economic policies such as safety nets and [[Risk Transfer|risk transfer]] mechanisms.</big>
  
 
=== National Definitions ===
 
=== National Definitions ===
Line 13: Line 13:
 
===Standard Definition===
 
===Standard Definition===
 
==== ISO/IEC 27000:2014 ====
 
==== ISO/IEC 27000:2014 ====
[[Risk]] remaining after [[Risk Treatment|risk treatment]] <ref name="ISO27000-14"> [http://www.iso.org/iso/home/store/catalogue_ics/catalogue_detail_ics.htm?csnumber=63411 ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary]</ref>.  
+
{{definition|[[Risk]] remaining after [[Risk Treatment|risk treatment]] <ref name="ISO27000-14"> [http://www.iso.org/iso/home/store/catalogue_ics/catalogue_detail_ics.htm?csnumber=63411 ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary]</ref>. }}
* Residual risk can contain unidentified risk.
+
<big>* Residual risk can contain unidentified risk.
* Residual risk can also be known as “retained risk”.
+
* Residual risk can also be known as “retained risk”.</big>
  
 
==See also==
 
==See also==

Revision as of 10:43, 17 June 2014

Definitions

European Definitions

Other International Definitions

UNISDR

The risk that remains in unmanaged form, even when effective disaster risk reduction measures are in place, and for which emergency response and recovery capacities must be maintained [1].

According to UNISDR, the presence of residual risk implies a continuing need to develop and support effective capacities for emergency services, preparedness,response and recovery together with socio-economic policies such as safety nets and risk transfer mechanisms.

National Definitions

Standard Definition

ISO/IEC 27000:2014

Risk remaining after risk treatment [2].

* Residual risk can contain unidentified risk.

  • Residual risk can also be known as “retained risk”.

See also

Notes