The IT Law Wiki

Residual risk

32,079pages on
this wiki
Add New Page
Add New Page Talk0

Definitions Edit

Residual risk is

[t]he remaining, potential risk after all IT security measures are applied. There is a residual risk associated with each threat.[1]
[t]he potential for the occurrence of an adverse event after adjusting for the impact of all in-place safeguards.[2]

References Edit

  1. NIST Special Publication 800-33, at 21.
  2. NIST Special Publication 800-16, Appendix C, Glossary.

Also on Fandom

Random Wiki