Difference between revisions of "Risk Acceptance"
Jump to navigation
Jump to search
(→ENISA) |
|||
Line 10: | Line 10: | ||
=== National Definitions === | === National Definitions === | ||
====[[ Australia]] ==== | ====[[ Australia]] ==== | ||
− | {{definition|Risk acceptance is an informed decision to accept the likelihood and the [[Consequence|consequences]] of a particular [[risk]]. <ref name="MAIMAus">[https://www.em.gov.au/Documents/Manual03-AEMGlossary.PDF Australian Emergency Management Glossary, Emergency Management Australia (1998)]</ref>}}<br /> | + | {{definition|Risk acceptance is an informed decision to accept the likelihood and the [[Consequence|consequences]] of a particular [[risk]]. <ref name="MAIMAus">[https://www.em.gov.au/Documents/Manual03-AEMGlossary.PDF Australian Emergency Management Glossary, Emergency Management Australia (1998)]</ref>}}<br /><br/> |
====[[Czech Republic]]==== | ====[[Czech Republic]]==== | ||
− | {{definition|Přijetí rizika: Rozhodnutí přijmout riziko. <ref>[http://www.govcert.cz/download/nodeid-561 Výkladový slovník kybernetické bezpečnosti (2013)]</ref><br/><br/>Risk acceptance: Decision to accept [[risk]]. <ref>[http://www.govcert.cz/download/nodeid-3555/ Cyber Security Explanatory Glossary (2013)]</ref>}}<br /> | + | {{definition|Přijetí rizika: Rozhodnutí přijmout riziko. <ref>[http://www.govcert.cz/download/nodeid-561 Výkladový slovník kybernetické bezpečnosti (2013)]</ref><br/><br/>Risk acceptance: Decision to accept [[risk]]. <ref>[http://www.govcert.cz/download/nodeid-3555/ Cyber Security Explanatory Glossary (2013)]</ref>}}<br /><br/> |
+ | ==== [[United States]] ==== | ||
+ | ===== [[DHS]] ===== | ||
+ | {{definition|Risk acceptance is an explicit or implicit decision not to take an action that would affect all or part of a particular risk. <ref name="DHSLex"> [http://www.dhs.gov/xlibrary/assets/dhs-risk-lexicon-2010.pdf DHS Risk Lexicon 2010 Edition, September 2010]</ref>}}<br /><br/> | ||
===Standard Definition=== | ===Standard Definition=== | ||
Line 32: | Line 35: | ||
[[Category:Risk]] | [[Category:Risk]] | ||
[[Category:Analysis]] | [[Category:Analysis]] | ||
− | {{#set:defined by=ENISA|defined by=Australia|defined by=Czech Republic}} | + | {{#set:defined by=ENISA|defined by=Australia|defined by=Czech Republic|defined by=United States|defined by=DHS}} |
Revision as of 14:48, 4 December 2016
Contents
Definitions
European Definitions
ENISA
Risk Acceptance concerns the communication of residual risks to the decision makers. [1]
Risk Acceptance is the potential that a given threat will exploit vulnerabilities of an asset or group of assets and thereby cause harm to the organization (ISO/IEC PDTR 13335-1). [2]
National Definitions
Australia
Risk acceptance is an informed decision to accept the likelihood and the consequences of a particular risk. [3]
Czech Republic
United States
DHS
Risk acceptance is an explicit or implicit decision not to take an action that would affect all or part of a particular risk. [6]