Components of Information Risk

Risk is a combination of three main component factors:

  • Asset – The starting point for any information risk is the asset – information asset examples can range from an A4 paper sheet containing a single business concept to a  complex internet-based network architecture employed to process your entire business data;
  • Threat – Next is the threat to your information assets, whether in human form from malice or accident, or from natural hazards; and,
  • Vulnerability – Finally, the vulnerability that all information assets carry; paper documents, if not appropriately filed may be easily misplaced for example. On the other hand an internet-based network can often be hacked without user knowledge.

Through further analysis of each of these main component factors measurable values can be determined to assist in business – including cost-based – risk-management decisions.

Please read our Flyer for more information on this topic.

Flyer - Components of Information Risk (286 downloads)