Definition: The word Risk means that circumstances in which an organization’s information system is confronted with a threat and vulnerability converging. All information systems function in what can be called an asymmetric threat environment. Conditions are likely to be different for every situation and every organization. How the security challenges evolve is directly related to the organization’s infrastructure, reality and settings. Preparing for the unexpected is key to providing for assurance.

Its Relevance: A business or an organization, to prepare, must conduct a threat assessment and vulnerability assessment to better understand what type of security challenges it faces. Outside forces, such as laws, regulations and standards, can dictate what must be done. All prudent organizations must address how potential challenges to their information resources are to be handled.

Return from "Risk" to Words [P - R]