Difference between revisions of "Risk Identification"

From CIPedia
Jump to navigation Jump to search
(Notes)
(Definitions)
Line 1: Line 1:
 
==Definitions==
 
==Definitions==
=== Official European Definition ===
+
=== European Definitions ===
  
  

Revision as of 10:11, 10 June 2014

Definitions

European Definitions

Other International Definitions

National Definitions

Standard Definition

ISO/IEC 27000:2014

The standard defines risk assessment as the "process of finding, recognizing and describing risks" [1](based on the ISO Guide 73:2009[2]).

  • Risk identification involves the identification of risk sources, events, their causes and their potential consequences.
  • Risk identification can involve historical data, theoretical analysis, informed and expert opinions, and stakeholders’ needs.

See also


Notes

  1. ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary
  2. ISO Guide 73:2009 Risk management -- Vocabulary
Retrieved from "https://websites.fraunhofer.de/CIPedia/index.php?title=Risk_Identification&oldid=680"