Information Technology (IT) Risk
Jump to navigation
Jump to search
An Information Technology (IT) Risk is a technology risk that involves information technology.
- Example(s):
- Context:
- It can include risks associated with the confidentiality, integrity, and availability of data and IT services.
- It can include risks arising from inadequate or failed internal processes, people, systems, or external events.
- It can requires a systematic approach to identify, assess, manage, and mitigate potential threats and vulnerabilities within the IT environment.
- ...
- Example(s):
- AI Risk.
- Cybersecurity Risk such as phishing attacks.
- Software Vulnerability Risk from outdated software.
- Data Privacy Risk related to privacy law compliance.
- Operational Risk due to IT system failures.
- ...
- Counter-Example(s):
- See: Cyber Threat, Risk, IT Risk Management, Knowledge Economy, Digital Revolution, Information Processing, Business Continuity Planning, Data Protection Regulation.
References
2023
- (Wikipedia, 2023) ⇒ https://en.wikipedia.org/wiki/IT_risk Retrieved:2023-8-14.
- Information technology risk, IT risk, IT-related risk, or cyber risk is any risk relating to information technology. While information has long been appreciated as a valuable and important asset, the rise of the knowledge economy and the Digital Revolution has led to organizations becoming increasingly dependent on information, information processing and especially IT. Various events or incidents that compromise IT in some way can therefore cause adverse impacts on the organization's business processes or mission, ranging from inconsequential to catastrophic in scale. Assessing the probability or likelihood of various types of event/incident with their predicted impacts or consequences, should they occur, is a common way to assess and measure IT risks. [1] Alternative methods of measuring IT risk typically involve assessing other contributory factors such as the threats, vulnerabilities, exposures, and asset values.
- ↑ "Risk is a combination of the likelihood of an occurrence of a hazardous event or exposure(s) and the severity of injury or ill health that can be caused by the event or exposure(s)" (OHSAS 18001:2007)