Risk assessment may be defined as a process to identify, analyze and evaluate risk(s).

This often may involve the process of: (1) identifying internal and external threats and vulnerabilities, (2) identifying the probability and impact of an event arising from such threats or vulnerabilities, (3) defining critical functions necessary to continue the organization’s operations, (4) defining the controls in place necessary to reduce exposure, and evaluating the cost of such controls.

Pin It on Pinterest