Risk Management (Information Security)
Risk management identifies the most important risks and distinguishes between risks that have to be dealt with and acceptable risks. It uses security resources tackling the risks for personal data according to a scale of priorities. The risk management process constitutes a cycle that is repeated depending on the particular characteristics of the systems and the risks identified. Risk management results in final processes and an updated security policy, and often also in adaptations to the organisation and its procedures in order to handle possible new risks better, and to assess the measures that have been taken.
There is currently no content classified with this term.