The IT Law Wiki

IT-related risk

32,299pages on
this wiki
Add New Page
Talk0 Share

Definition Edit

IT-related risk is

the net mission/business impact considering
  1. the likelihood that a particular threat source will exploit, or trigger, a particular information system vulnerability, and
  2. the resulting impact if this should occur. IT-related risks arise from legal liability or mission/business loss due to, but not limited to:
Unauthorized (malicious, non-malicious, or accidental) disclosure, modification, or destruction of information.
Non-malicious errors and omissions.
IT disruptions due to natural or man-made disasters.
Failure to exercise due care and diligence in the implementation and operation of the IT.[1]

References Edit

  1. NIST Special Publication 800-27A, at A-2.

Ad blocker interference detected!

Wikia is a free-to-use site that makes money from advertising. We have a modified experience for viewers using ad blockers

Wikia is not accessible if you’ve made further modifications. Remove the custom ad blocker rule(s) and the page will load as expected.

Also on Fandom

Random Wiki