Risk Tolerance

From BCMpedia. A Wiki Glossary for Business Continuity Management (BCM) and Disaster Recovery (DR).
Revision as of 21:42, 19 April 2023 by Moh heng (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search
1. Risk Tolerance is the amount of risk an organization is willing to accept or be exposed to.

Click to know more OR courses

Risk Tolerance in Operational Resilience:

Notes (1): is the level of risk or uncertainty deemed acceptable to an organization.

Notes (2): has a range of specified results. A high-risk tolerance means the organization is willing to take greater risks, and low-risk tolerance means they are unwilling to take high risks.


Related Term: Risk Acceptance, Risk Treatment, Residual Risk, Risk Appetite

BCM Institute's Professional Training and Certification


BCMBoK Competency Level
BCMBoK 2: Risk Analysis & Review CL 2B: Intermediate (BC)



BCMBoK Competency Level
BCMBoK 2: Risk Analysis & Review CL 2C: Intermediate (CM)



BCMBoK Competency Level
BCMBoK 2: Risk Analysis & Review CL 2D: Intermediate (DR)
Click to know more about expert level training

(Source: Business Continuity Management Institute - BCM Institute)

A Manager’s Guide to ISO 22301 Standard for Business Continuity Management System


2. Total amount of risk that an organization is prepared to accept, tolerate, or be exposed to at any point in time.

(Source: ISO 22399:2007 – Societal Security - Guideline for Incident Preparedness and Operational Continuity Management) - clause 3.41