Difference between revisions of "Residual Risk"

From CIPedia
Jump to navigation Jump to search
(UNDRR)
(UNDRR)
Line 15: Line 15:
 
{{definition|Sisa Risiko:  Risiko yang tertinggal dalam bentuk yang tidak diuruskan, walaupun tindakan pengurangan risiko bencana dilaksanakan, dan oleh sebab itu, respon kecemasan serta kapasiti pemulihan perlu dikekalkan. <ref>[http://www.preventionweb.net/files/7817_isdrmalaysiaterminology.pdf UNISDR glossary in Malay]</ref>}}<br/>
 
{{definition|Sisa Risiko:  Risiko yang tertinggal dalam bentuk yang tidak diuruskan, walaupun tindakan pengurangan risiko bencana dilaksanakan, dan oleh sebab itu, respon kecemasan serta kapasiti pemulihan perlu dikekalkan. <ref>[http://www.preventionweb.net/files/7817_isdrmalaysiaterminology.pdf UNISDR glossary in Malay]</ref>}}<br/>
 
{{definition|Mga Labing (Tirang) Peligro: Ang nalalabing peligro sa di-napamahalaang anyo (porma), kahit na mayruong mga hakbang sa pagbabawas ng peligro ng kalamidad, ay pagkakalooban pa rin ng pangkagipitang pagtugon at ang mga kakayahan sa pagrekober ay mamantinihin. <ref>[http://www.preventionweb.net/files/7817_isdrphillipinesterminology.pdf UNISDR glossary in Tagalog]</ref>}}<br/>
 
{{definition|Mga Labing (Tirang) Peligro: Ang nalalabing peligro sa di-napamahalaang anyo (porma), kahit na mayruong mga hakbang sa pagbabawas ng peligro ng kalamidad, ay pagkakalooban pa rin ng pangkagipitang pagtugon at ang mga kakayahan sa pagrekober ay mamantinihin. <ref>[http://www.preventionweb.net/files/7817_isdrphillipinesterminology.pdf UNISDR glossary in Tagalog]</ref>}}<br/>
{{definition|残余风险 - 即使有效的减少灾害风险措施已经到位却仍然以无管控形式存在并需要维持 应急反应和复原能力的灾害风险。 <ref>[https://www.preventionweb.net/files/50683_oiewgreportenglish.pdf UNDRR Terminology on Disaster Risk Reduction in Chinese]</ref>}}<br/><br/>
+
{{definition|残余风险 - 即使有效的减少灾害风险措施已经到位却仍然以无管控形式存在并需要维持 应急反应和复原能力的灾害风险。 <ref>[https://www.preventionweb.net/files/50683_oiewgreportenglish.pdf UNDRR Terminology on Disaster Risk Reduction in Chinese]</ref>}}<br/>
 +
{{definition|<ref>[https://www.preventionweb.net/files/7817_unisdr2009terminologypersianedition.pdf Internationally agreed glossary of basic terms related to Disaster Management in Farsi]</ref>ه خطرپذيري  باقيمانده<br/>خطرپذيري كه به صورت مديريت نشده باقي مي ماند، حتي در زماني كه اقدامات مربوط به كاهش خطرپذيري<br/>بحران به طور موثر و در جاي خود بكار روند و در اين موارد بايد واكنش در شرايط اضطراري و ظرفيت هاي<br/>بازتواني مد نظر قرار گيرد. }}<br/><br/>
  
 
=== National Definitions ===
 
=== National Definitions ===

Revision as of 14:29, 27 January 2020

Definitions

European Definitions

ENISA

ENISA uses the ISO definition, see below. [1]


Other International Definitions

UNDRR

The risk that remains in unmanaged form, even when effective disaster risk reduction measures are in place, and for which emergency response and recovery capacities must be maintained. [2]

According to UNISDR, the presence of residual risk implies a continuing need to develop and support effective capacities for emergency services, preparedness,response and recovery together with socio-economic policies such as safety nets and risk transfer mechanisms.

Risque résiduel: Les risques qui restent non gérés même si l’efficacité des mesures de réduction des risques de catastrophe est en place, et pour lesquels les interventions d’urgence et les capacités de récupération doivent être maintenues. [3]


Остаточный риск: Риск, который не поддается управлению даже после эффективной реализации мер по снижению риска, для противодействия которому необходимо сохранять потенциал реагирования и восстановления. [4]


Riesgo residual: El riesgo que todavía no se ha gestionado, aún cuando existan medidas eficaces para la reducción del riesgo de desastres y para los cuales se debe mantener las capacidades de respuesta de emergencia y de recuperación. [5]


المخاطر المتبقية : المخاطر التي لم يتم التحكم بها حتى بعد تطبيق الإجراءات الفعالة للحد من مخاطر الكوارث، والتي يجب المحافظة معها على قدرات الاستجابة والتعافي في حالات الطوارئ. [6]


Risiko Residual: Risiko yang tetap ada dalam bentuk yang tidak bisa dikelola, meskipun sudah ada langkahlangkah pengurangan risiko bencana yang efektif, dan yang mengharuskan tetap dijaganya kapasitas respons keadaan darurat dan pemulihan. [7]


Sisa Risiko: Risiko yang tertinggal dalam bentuk yang tidak diuruskan, walaupun tindakan pengurangan risiko bencana dilaksanakan, dan oleh sebab itu, respon kecemasan serta kapasiti pemulihan perlu dikekalkan. [8]


Mga Labing (Tirang) Peligro: Ang nalalabing peligro sa di-napamahalaang anyo (porma), kahit na mayruong mga hakbang sa pagbabawas ng peligro ng kalamidad, ay pagkakalooban pa rin ng pangkagipitang pagtugon at ang mga kakayahan sa pagrekober ay mamantinihin. [9]


残余风险 - 即使有效的减少灾害风险措施已经到位却仍然以无管控形式存在并需要维持 应急反应和复原能力的灾害风险。 [10]


[11]ه خطرپذيري باقيمانده
خطرپذيري كه به صورت مديريت نشده باقي مي ماند، حتي در زماني كه اقدامات مربوط به كاهش خطرپذيري
بحران به طور موثر و در جاي خود بكار روند و در اين موارد بايد واكنش در شرايط اضطراري و ظرفيت هاي
بازتواني مد نظر قرار گيرد.



National Definitions

Argentina

Riesgo residual: El riesgo que todavía no se ha gestionado, aun cuando existan medidas eficaces para la reducción del riesgo de desastres y para los cuales se debe mantener las capacidades de respuesta de emergencia y de recuperación. [12]




Australia

Residual risk: The remaining level of risk after any risk treatments have been implemented. [13]



Belgium

Restrisico’s zijn de risico’s die blijven bestaan na de risicobehandeling of, anders gezegd, nadat beschermingsmaatregelen werden ingevoerd. [14]



Canada

Residual risk: The likelihood and impact of a threat that remains after security controls are implemented. [15]

Risque résiduel: Le degré de probabilité et les répercussions potentielles d'une menace qui subsistent après la mise en application des contrôles de sécurité. [16]


Residual risk: risk that remains after implementing risk mitigation measures.

Risque résiduel: risque qui subsiste après l’application de mesures d’atténuation du risque. [17]



Risque résiduel: risque qui subsiste après la mise en œuvre de mesures de réduction des conséquences et des fréquences d’occurrence des accidents potentiels. [17]



Colombia

Riesgo Residual: Remanente después del Tratamiento del Riesgo. (GTC137 2011). Es aquel que permanece aún después de desarrolladas las acciones de tratamiento del riesgo. [18]

Capacidad total de riesgo que una organización está dispuesta a aceptar, tolerar o asumir en cualquier momento dado.

Czech Republic

Zbytkové riziko: Riziko, které zůstává i po aplikaci příslušných opatření. [19]

Residual risk is the risk remaining even after an application of the appropriate measures. [20]


Japan

残存リスク: 対策が適用された後に残るリスク.

The risk that remains after countermeasures have been applied. [21]



Luxembourg

Risque résiduel: Risque subsistant après le traitement des risques. [22]



Philippines

Residual Risk: The remaining potential risk after all IT security measures are applied. [23]


Residual Risk: The level of risk that remains after all efforts to mitigate and eliminate risk have been made. [24]



Portugal

[Definição]Risco Residual: Risco que permanece após terem sido aplicadas medidas de segurança, dado que não é possível neutralizar todas as ameaças nem eliminar todas as vulnerabilidades. [25]



Switzerland

Restrisiko bezeichnet das Risiko, das nach Realisierung aller vorgesehenen Sicherheitsmassnahmen weiterhin verbleibt. [26]

On entend par « risque résiduel » le risque qui subsiste une fois que toutes les mesures de sécurité prévues ont été mises en oeuvre. [27]

È il rischio che rimane dopo l'adozione di tutte le misure di sicurezza previste. [28]




United States

DHS
Residual risk is risk that remains after risk management measures have been implemented. [29]


NIST
The potential for the occurrence of an adverse event after adjusting for the impact of all in-place safeguards. (from: NIST SP 800-16) [30]


The remaining potential risk after all IT security measures are applied. (from: NIST SP 800-16) [30]

There is a Residual risk associated with each threat.

Standard Definition

IETF

The portion of an original risk or set of risks that remain after countermeasures have been applied. [31]


ISO/IEC 27000:2014 and ISO 31000:2009

Residual risk is the risk remaining after risk treatment. [32] [33]

  • Residual risk can contain unidentified risk.
  • Residual risk can also be known as “retained risk”.

See also

Notes

  1. ENISA Risk Glossary
  2. 2009 UNISDR Terminology on Disaster Risk Reduction
  3. UNISDR glossary
  4. UNISDR glossary
  5. UNISDR glossary
  6. UNISDR glossary
  7. UNISDR glossary in Bahasa
  8. UNISDR glossary in Malay
  9. UNISDR glossary in Tagalog
  10. UNDRR Terminology on Disaster Risk Reduction in Chinese
  11. Internationally agreed glossary of basic terms related to Disaster Management in Farsi
  12. SUBSECRETARÍA DE PROTECCIÓN CIVIL Y ABORDAJE INTEGRAL DE EMERGENCIAS Y CATÁSTROFES (1/2015)
  13. Protective Security Policy Framework - Glossary Oct 2017
  14. Gegevensbeschermingsautoriteit
  15. Glossary - Canadian Centre for Cyber Security
  16. Glossaire - Centre Canadien pour la Cybersécurité
  17. 17.0 17.1 Vocabulaire de la gestion des urgencies/Emergency Management Emergency Management Vocabulary 281 (2012) Cite error: Invalid <ref> tag; name "canada" defined multiple times with different content
  18. Glosario Policia Colombia
  19. Výkladový slovník kybernetické bezpečnosti (2013)
  20. Výkladový slovník kybernetické bezpečnosti (2013)
  21. RFC2828 (Japanese translation)
  22. Glossaire
  23. DND GLOSSARY OF CYBER SECURITY TERMS (v.4)
  24. NHS Cyber security glossary
  25. Glossário Centro National de Cibersegurança Portugal
  26. Glossar der Risikobegriffe, Bundesamt für Bevölkerungsschutz BABS, 29.4.2013
  27. Glossaire des risques, Office fédéral de la protection de la population, 29.4.2013
  28. Glossario sui rischi, Ufficio federale della protezione della popolazione UFPP, 29.4.2013
  29. DHS Risk Lexicon 2010 Edition, September 2010
  30. 30.0 30.1 NIST Glossary
  31. IETF RFC449 Internet Security Glossary 2
  32. ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary
  33. ISO/IEC 31000:2009, Risk management -- Principles and guidelines