Risk Evaluation

From CIPedia
Revision as of 00:24, 24 May 2015 by Eluiijf (talk | contribs) (National Definitions)
Jump to navigation Jump to search

Definitions

European Definitions

Other International Definitions

National Definitions

Australia

Risk evaluation is the process in which judgements are made on the tolerability of the risk on the basis of risk analysis and taking into account factors such as socioeconomic and environmental aspects. [1]


Risk evaluation is the process used to prioritise risks. [1]


Standard Definition

ISO/IEC 27000:2014

Process of comparing the results of risk analysis with risk criteria to determine whether the riskand/or its magnitude is acceptable or tolerable [2](based on the ISO Guide 73:2009[3]).

  • Risk criteria are the terms of reference against which the significance of risk is evaluated [3]). They are based on organizational objectives, and external and internal context, and can be derived from standards, laws, policies and other requirements.
  • Risk evaluation assists in the decision about risk treatment.

See also

Notes

  1. 1.0 1.1 Australian Emergency Management Glossary, Emergency Management Australia (1998)
  2. ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary
  3. 3.0 3.1 ISO Guide 73:2009 Risk management -- Vocabulary
Retrieved from "https://websites.fraunhofer.de/CIPedia/index.php?title=Risk_Evaluation&oldid=2451"