Risk Acceptance: Difference between revisions
No edit summary |
(No difference)
|
Latest revision as of 23:26, 29 October 2020
1. Risk Acceptance is to make an informed decision to accept the likelihood and impact of a particular risk. Risk Acceptance depends on risk criteria and the risk appetite of Top Management.
Related Terms: Risk Treatment, Risk Tolerance, Residual Risk.
|
2. Decision to accept risk.
Notes (1);: The verb “to accept” is chosen to convey the idea that acceptance has its basic dictionary meaning.
Notes (2): Risk acceptance depends on the risk criteria.
(Source: ISO 22399:2007 – Societal Security - Guideline for Incident Preparedness and Operational Continuity Management) - clause 3.34
{{#ev:youtube|xYcJK6Joml8|400}}
3. An informed decision to accept the probability and impact of a particular risk.
(Source: Singapore Standard 540 - SS 540:2008)
4. An informed decision to accept the consequences of likely events based on risk criteria.
(Source: ENISA - the European Network and Information Security Agency. BCM & Resilience Glossary)