The IT Law Wiki

Security risk assessment

32,297pages on
this wiki
Add New Page
Talk0 Share

Definition Edit

A security risk assessment consists of

[p]rocess and associated techniques to identify: (i) threats to the operations, information, systems, assets, and individuals of the organization; (ii) vulnerabilities associated with the operations, information, systems, assets, and individuals associated with the organization; (iii) consequences/impact to the mission/business should a threat successfully exploit a vulnerability; and (iv) the likelihood that a specific vulnerability will be exploited and a threat will be realized.[1]

References Edit

  1. NIST Special Publication 800-160, at B-11.

See also Edit

Ad blocker interference detected!

Wikia is a free-to-use site that makes money from advertising. We have a modified experience for viewers using ad blockers

Wikia is not accessible if you’ve made further modifications. Remove the custom ad blocker rule(s) and the page will load as expected.

Also on Fandom

Random Wiki