Risk Reporting Flashcards by Harry H

Capacity for loss

Objective measure of how much loss the organization can withstand and remain solvent

How well did you know this?

Not at all

Perfectly

Tolerance for Loss

Subjective measure of how much loss an organization is willing to withstand.

Tolerance can vary among stakeholders/scenarios.

How well did you know this?

Not at all

Perfectly

Fragile condition

Facing many threat events, but none are becoming loss events because of a single control.

What happens if it fails?

Threat events become loss events

How well did you know this?

Not at all

Perfectly

Unstable condition

High vulnerability but no threat events. (No threat events at the moment and no controls)

What if threat community starts attacking?

Threat events become loss events.

How well did you know this?

Not at all

Perfectly

H/M/L Labels

High Medium Low

How well did you know this?

Not at all

Perfectly

Translation table

Always required when using H/M/L labels to avoid subjective interpretations

How well did you know this?

Not at all

Perfectly

Risk Rating: SV

Severe

How well did you know this?

Not at all

Perfectly

Risk rating: H

High

How well did you know this?

Not at all

Perfectly

Risk rating: Sg

Significant

How well did you know this?

Not at all

Perfectly

Risk rating: M

Moderate

How well did you know this?

Not at all

Perfectly

Risk rating: L

Low

How well did you know this?

Not at all

Perfectly

Risk rating: VL

Very low

How well did you know this?

Not at all

Perfectly

How to remediate fragile condition…

Add additional layers of control

How well did you know this?

Not at all

Perfectly

Brainscape's Knowledge GenomeTM

Risk Reporting Flashcards

Brainscape's Knowledge Genome^TM