Risk Criteria
| 1. Risk Criteria is the terms of reference (standards, measures, or expectations) used in making a judgement or a decision on the significance of risk to be assessed.
Risk Criteria may include:
| ||||||||||||||
|
(Source: Business Continuity Management Institute - BCM Institute) |
2. Terms of reference against which the significance of a risk (Clause 3.19) is evaluated.
NOTES:
- Risk criteria are based on internal and external context, and are regularly reviewed to ensure
continued relevance.
- Risk criteria can be derived from standards, laws and policies.
(Source: AS/NZS 5050.1 Australian and New Zealand Standards for business continuity management.
Part 1: Business continuity management system specification)
