Risk Reduction

1. Risk Reduction is to take appropriate actions to lessen the probability, negative consequences or both, associated with a risk.

Related Terms: Risk Treatment, Risk Mitigation, Risk Transference.

Note: The purpose of Risk Reduction is to reduce the risk to a level which is acceptable to management; by identifying, evaluating and implementing suitable controls or countermeasures. Examples of a control is the deployment of more security guards (physical control) and clean desk policy (procedural control).

	BCMBoK	Competency Level
	BCMBoK 2: Risk Analysis & Review	CL 2: Intermediate (BC)

	BCMBoK	Competency Level
	BCMBoK 2: Risk Analysis & Review	CL 4: Intermediate (DR)

(Source: Business Continuity Management Institute - BCM Institute)

2. A selective application of appropriate techniques and management principles to reduce either probability of an occurrence or its impact, or both.

(Source: Singapore Standard 540 - SS 540:2008)

3. A selective application of appropriate techniques and management principles to reduce or mitigate either likelihood of an occurrence or its consequences, or both.

(Source: Business Continuity Institute - BCI)

4. Plans and processes that will allow an organization to avoid, preclude, or limit the impact of a crisis occurring. The tasks included in prevention should include compliance with corporate policy, mitigation strategies, and behavior and programs to support avoidance and deterrence and detection.

(Source: ASIS International - ASIS International)

5. The implementation of the preventative measures which Risk Assessment has identified.

(Source: Business Continuity Institute - BCI)

(Source: ENISA - the European Network and Information Security Agency. BCM & Resilience Glossary)

Retrieved from "http://www.bcmpedia.org/wiki/Risk_Reduction"

Personal tools

BCMpedia. A Wiki Glossary for Business Continuity Management (BCM) and Disaster Recovery (DR).

Search

Navigation

Resources

Knowledge

BCM Glossary

Books

Acknowledgment

Toolbox

Risk Reduction