5.2 IMPORTANT Flashcards
one-time risk assessment
part of a one-time project, buying new equipment etc..
continous assessments
may be part of an existing process, (for change management for example)
ad hoc assessments
performing a risk assessment for one specific purpose.
recurring assessments
risk assessment on a standard schedule. can be internal or required by law
qualitative risk assessment
identify significant risk factors.
quantitative risk assessment
calculate a specific value.
ARO
Annualized Rate of Occurrence- how often it occurs in a year.
AV
Asset value- value of the asset to the organization
EF
Exposure factor- percentage of the value lost due to an incident
SLE
Single Loss Expectancy-monetary loss if a single event occurs.
AV x EF=SLE
ALE
Annualized Loss Expectancy= ARO x SLE
impact of risk analysis
life, property, safety, finance
risk likelihood
a qualitative measurement of risk. (low, medium, or high)
risk probability
a quantitative measurement of risk.
a statistical measurement.
risk appetite
risk taking deemed acceptable.
speed limit is 55.