Difference between revisions of "Risk Acceptance"
Jump to navigation
Jump to search
(→ENISA) |
(→Czech Republic) |
||
Line 13: | Line 13: | ||
====[[Czech Republic]]==== | ====[[Czech Republic]]==== | ||
− | {{definition|Přijetí rizika: Rozhodnutí přijmout riziko. <ref> http://www.govcert.cz/download/nodeid-561 Výkladový slovník kybernetické bezpečnosti (2013)</ref><br/><br/>Risk acceptance: Decision to accept [[risk]]. <ref> [http://www.govcert.cz/download/nodeid-3555/ Cyber Security Explanatory Glossary (2013)]</ref>}}<br /> | + | {{definition|Přijetí rizika: Rozhodnutí přijmout riziko. <ref>[http://www.govcert.cz/download/nodeid-561 Výkladový slovník kybernetické bezpečnosti (2013)]</ref><br/><br/>Risk acceptance: Decision to accept [[risk]]. <ref>[http://www.govcert.cz/download/nodeid-3555/ Cyber Security Explanatory Glossary (2013)]</ref>}}<br /> |
===Standard Definition=== | ===Standard Definition=== |
Revision as of 01:06, 28 September 2016
Contents
Definitions
European Definitions
ENISA
Risk Acceptance concerns the communication of residual risks to the decision makers. [1]
Risk Acceptance is the potential that a given threat will exploit vulnerabilities of an asset or group of assets and thereby cause harm to the organization (ISO/IEC PDTR 13335-1). [2]
National Definitions
Australia
Risk acceptance is an informed decision to accept the likelihood and the consequences of a particular risk. [3]
Czech Republic