Risk Identification

From CIPedia
Revision as of 11:05, 22 December 2016 by Eluiijf (talk | contribs)
Jump to navigation Jump to search

Definitions

European Definitions

ENISA

Risk Identification is the process to find, list and characterize elements of risk (refers to ISO/IEC Guide 73). [1]


European Project Definitions

CIPRNet project

The CIPRNet project [2] uses the following definition:

Risk identification is the process of finding, recognizing and describing risk.



National Definitions

Australia

Risk identification is the process of determining what can happen, why and how. [3]


Process of finding, recognizing and describing risks. [4]


Canada

The process of finding,recognizing and recording risk. [5]

Processus de recherche, de reconnaissance et d’enregistrement de risques. [6]


Czech Republic

Process of looking for, recognizing, and describing risks (Proces hledání, rozpoznávání a popisování rizik). [7]


Finland

Risk Identification is a part of Risk Analysis through which risks are identified and the probability of a damaging event is preliminary estimated.

Riskin kartoitus / riskikartoitus: Riskianalyysin osa, jonka avulla tunnistetaan riskit ja alustavasti arvioidaan vahinkotapahtuman todennäköisyys. [8]


Netherlands

[Dutch] Risico-identificatie is het proces van opsporen, herkennen en beschrijven van risico’s. [9]



United States

DHS
Risk identification is the process of finding, recognizing, and describing potential risks. [10]


Standard Definition

ISO/IEC 27000:2014 and ISO 31000:2009

The standard defines risk assessment as

the "process of finding, recognizing and describing risks" [11] [12]. (based on the ISO Guide 73:2009[13])

  • Risk identification involves the identification of risk sources, events, their causes and their potential consequences.
  • Risk identification can involve historical data, theoretical analysis, informed and expert opinions, and stakeholders’ needs.

See also


Notes