Difference between revisions of "Risk Treatment"
Jump to navigation
Jump to search
(→See also) |
|||
Line 30: | Line 30: | ||
* [[Risk]] | * [[Risk]] | ||
* [[Risk Transfer]] | * [[Risk Transfer]] | ||
− | |||
* [[Risk Mitigation]] | * [[Risk Mitigation]] | ||
+ | * [[Risk Reduction]] | ||
==Notes== | ==Notes== |
Revision as of 21:45, 10 June 2015
Contents
Definitions
European Definitions
Other International Definitions
National Definitions
Australia
Risk treatment is the selection and implementation of appropriate options for dealing with risk. [1]
Standard Definition
ISO/IEC 27000:2014
Risk treatment can involve:
- avoiding the risk by deciding not to start or continue with the activity that gives rise to the risk;
- taking or increasing risk in order to pursue an opportunity;
- removing the risk source;
- changing the likelihood;
- changing the consequences;
- sharing the risk with another party or parties (including contracts and risk financing) (see Risk Transfer); and
- retaining the risk by informed choice.
Risk treatments that deal with negative consequences are sometimes referred to as “Risk Mitigation”, “Risk Elimination”, “Risk Prevention” and “Risk Reduction”.
Risk treatment can create new risks or modify existing risks.