Risk Assessment

The evaluation of risks to an organization that could affect its operations, reputation, and overall value. Many such risks involve the security of a company’s digital data and networks. Risk assessments generally involve the gathering of information about an organization’s systems (hardware, software, data) and business operations; the identification of threats such as man-made or natural disasters, security breaches, and environmental factors (pollution or power failure); and the evaluation of an organization’s vulnerabilities to those threats.