Risk is a combination of three main component factors:
- Asset – The starting point for any information risk is the asset – information asset examples can range from an A4 paper sheet containing a single business concept to a complex internet-based network architecture employed to process your entire business data;
- Threat – Next is the threat to your information assets, whether in human form from malice or accident, or from natural hazards; and,
- Vulnerability – Finally, the vulnerability that all information assets carry; paper documents, if not appropriately filed may be easily misplaced for example. On the other hand an internet-based network can often be hacked without user knowledge.
Through further analysis of each of these main component factors measurable values can be determined to assist in business – including cost-based – risk-management decisions.
Please read our Flyer for more information on this topic.Flyer - Components of Information Risk (286 downloads)