Difference between revisions of "Risk Evaluation"

Revision as of 11:17, 4 June 2014

Definitions

Official European Definition

Other International Definitions

National Definitions

Standard Definition

ISO/IEC 27000:2014

Process of comparing the results of risk analysis with risk criteria to determine whether the riskand/or its magnitude is acceptable or tolerable ^[1](based on the ISO Guide 73:2009^[2]).

Risk criteria are the terms of reference against which the significance of risk is evaluated ^[2]). They are based on organizational objectives, and external and internal context, and can be derived from standards, laws, policies and other requirements.
Risk evaluation assists in the decision about risk treatment.

Notes

[ISO27000-14-1] ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary

[ISOGuide73-2] 2.0 ^2.1 ISO Guide 73:2009 Risk management -- Vocabulary

[1]

[2]

Revision as of 17:41, 21 May 2014 (view source) Mtheocharidou (talk \| contribs) (→‎ISO/IEC 27000:2014) ← Older edit		Revision as of 11:17, 4 June 2014 (view source) Mtheocharidou (talk \| contribs) (→‎Notes) Newer edit →
Line 29:		Line 29:
	* Test reference. -->		* Test reference. -->

−	[[Category:~~Main~~]]	+	[[Category:Risk]]

Difference between revisions of "Risk Evaluation"

Revision as of 11:17, 4 June 2014

Contents

Definitions

Official European Definition

Other International Definitions

National Definitions

Standard Definition

ISO/IEC 27000:2014

See also

Notes

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Actions

Fraunhofer-Wiki-Farm

Tools