Difference between revisions of "Risk Identification"
Jump to navigation
Jump to search
Line 7: | Line 7: | ||
=== National Definitions === | === National Definitions === | ||
− | ==== Australia ==== | + | ==== [[Australia]] ==== |
{{definition| Risk identification is the process of determining what can happen, why and how. <ref name="MAIMAus">[https://www.em.gov.au/Documents/Manual03-AEMGlossary.PDF Australian Emergency Management Glossary, Emergency Management Australia (1998)]</ref>}} | {{definition| Risk identification is the process of determining what can happen, why and how. <ref name="MAIMAus">[https://www.em.gov.au/Documents/Manual03-AEMGlossary.PDF Australian Emergency Management Glossary, Emergency Management Australia (1998)]</ref>}} | ||
<br /> | <br /> | ||
Line 13: | Line 13: | ||
{{definition|Process of finding, recognizing and describing risks. <ref> [http://www.risknz.org.nz/files/3114/0868%2F4596%2F5050-2010.pdf Australia AS NZS 5050 (2010)]</ref>}}<br /> | {{definition|Process of finding, recognizing and describing risks. <ref> [http://www.risknz.org.nz/files/3114/0868%2F4596%2F5050-2010.pdf Australia AS NZS 5050 (2010)]</ref>}}<br /> | ||
− | ==== Canada ==== | + | ==== [[Canada]] ==== |
{{definition|The process of finding,recognizing and recording [[risk]]. <ref>Derived from ISO 31000:2009</ref><br /><br />Processus de recherche, de reconnaissance et d’enregistrement de risques. <ref name="canada">[http://www.bt-tb.tpsgc-pwgsc.gc.ca/publications/documents/urgence-emergency.pdf Vocabulaire de la gestion des urgencies/Emergency Management Emergency Management Vocabulary 281 (2012)]</ref>}} | {{definition|The process of finding,recognizing and recording [[risk]]. <ref>Derived from ISO 31000:2009</ref><br /><br />Processus de recherche, de reconnaissance et d’enregistrement de risques. <ref name="canada">[http://www.bt-tb.tpsgc-pwgsc.gc.ca/publications/documents/urgence-emergency.pdf Vocabulaire de la gestion des urgencies/Emergency Management Emergency Management Vocabulary 281 (2012)]</ref>}} | ||
<br /> | <br /> | ||
− | ====Czech Republic==== | + | ====[[Czech Republic]]==== |
{{definition|Process of looking for, recognizing, and describing risks (Proces hledání, rozpoznávání a popisování rizik). <ref> [http://www.govcert.cz/download/nodeid-3555/ Cyber Security Explanatory Glossary (2013)]</ref>}} | {{definition|Process of looking for, recognizing, and describing risks (Proces hledání, rozpoznávání a popisování rizik). <ref> [http://www.govcert.cz/download/nodeid-3555/ Cyber Security Explanatory Glossary (2013)]</ref>}} | ||
<br /> | <br /> | ||
===Standard Definition=== | ===Standard Definition=== | ||
− | ==== ISO/IEC 27000:2014 and ISO 31000:2009 ==== | + | ==== [[ISO|ISO/IEC 27000:2014 and ISO 31000:2009 ]]==== |
<big>The standard defines risk assessment as</big> | <big>The standard defines risk assessment as</big> | ||
{{definition|the "process of finding, recognizing and describing [[risk|risks]]" <ref name="ISO27000-14"> [http://www.iso.org/iso/home/store/catalogue_ics/catalogue_detail_ics.htm?csnumber=63411 ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary]. </ref> <ref name="ISO31000-09"> [http://www.iso.org/iso/home/store/catalogue_tc/catalogue_detail.htm?csnumber=43170 ISO/IEC 31000:2009, Risk management -- Principles and guidelines]</ref>. (based on the ISO Guide 73:2009<ref name="ISOGuide73">[http://www.iso.org/iso/catalogue_detail?csnumber=44651 ISO Guide 73:2009 Risk management -- Vocabulary]</ref>)}} | {{definition|the "process of finding, recognizing and describing [[risk|risks]]" <ref name="ISO27000-14"> [http://www.iso.org/iso/home/store/catalogue_ics/catalogue_detail_ics.htm?csnumber=63411 ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary]. </ref> <ref name="ISO31000-09"> [http://www.iso.org/iso/home/store/catalogue_tc/catalogue_detail.htm?csnumber=43170 ISO/IEC 31000:2009, Risk management -- Principles and guidelines]</ref>. (based on the ISO Guide 73:2009<ref name="ISOGuide73">[http://www.iso.org/iso/catalogue_detail?csnumber=44651 ISO Guide 73:2009 Risk management -- Vocabulary]</ref>)}} |
Revision as of 01:49, 19 July 2015
Contents
Definitions
European Definitions
Other International Definitions
National Definitions
Australia
Risk identification is the process of determining what can happen, why and how. [1]
Process of finding, recognizing and describing risks. [2]
Canada
The process of finding,recognizing and recording risk. [3]
Processus de recherche, de reconnaissance et d’enregistrement de risques. [4]
Processus de recherche, de reconnaissance et d’enregistrement de risques. [4]
Czech Republic
Process of looking for, recognizing, and describing risks (Proces hledání, rozpoznávání a popisování rizik). [5]
Standard Definition
ISO/IEC 27000:2014 and ISO 31000:2009
The standard defines risk assessment as
the "process of finding, recognizing and describing risks" [6] [7]. (based on the ISO Guide 73:2009[8])
- Risk identification involves the identification of risk sources, events, their causes and their potential consequences.
- Risk identification can involve historical data, theoretical analysis, informed and expert opinions, and stakeholders’ needs.
See also
Notes
- ↑ Australian Emergency Management Glossary, Emergency Management Australia (1998)
- ↑ Australia AS NZS 5050 (2010)
- ↑ Derived from ISO 31000:2009
- ↑ Vocabulaire de la gestion des urgencies/Emergency Management Emergency Management Vocabulary 281 (2012)
- ↑ Cyber Security Explanatory Glossary (2013)
- ↑ ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary.
- ↑ ISO/IEC 31000:2009, Risk management -- Principles and guidelines
- ↑ ISO Guide 73:2009 Risk management -- Vocabulary