Risk Identification

From CIPedia
Revision as of 23:59, 14 July 2014 by Eluiijf (talk | contribs) (ISO/IEC 27000:2014 and ISO 31000:2009)
Jump to navigation Jump to search


European Definitions

Other International Definitions

National Definitions

Standard Definition

ISO/IEC 27000:2014 and ISO 31000:2009

The standard defines risk assessment as

the "process of finding, recognizing and describing risks" [1] [2].

(based on the ISO Guide 73:2009[3]).}}

  • Risk identification involves the identification of risk sources, events, their causes and their potential consequences.
  • Risk identification can involve historical data, theoretical analysis, informed and expert opinions, and stakeholders’ needs.

See also