Definition Edit

IT-related risk is

the net mission/business impact considering
  1. the likelihood that a particular threat source will exploit, or trigger, a particular information system vulnerability, and
  2. the resulting impact if this should occur. IT-related risks arise from legal liability or mission/business loss due to, but not limited to:
Unauthorized (malicious, non-malicious, or accidental) disclosure, modification, or destruction of information.
Non-malicious errors and omissions.
IT disruptions due to natural or man-made disasters.
Failure to exercise due care and diligence in the implementation and operation of the IT.[1]

References Edit

  1. NIST Special Publication 800-27A, at A-2.

Ad blocker interference detected!

Wikia is a free-to-use site that makes money from advertising. We have a modified experience for viewers using ad blockers

Wikia is not accessible if you’ve made further modifications. Remove the custom ad blocker rule(s) and the page will load as expected.