Risk Treatment

1. Risk Treatment is the selection and implementation of appropriate options for dealing with risk.

Risk Treatment includes Risk:

Note: Risk Reduction is used as a preferred term to Risk Termination. Often, there will be residual risk which cannot be remove totally as it is not cost-effective to do so. Risk Acceptance is sometimes referred to as Risk Tolerance.

	BCMBoK	Competency Level
	BCMBoK 2: Risk Analysis & Review	CL 2: Intermediate (BC)

	BCMBoK	Competency Level
	BCMBoK 2: Risk Analysis & Review	CL 4: Intermediate (DR)

(Source: Business Continuity Management Institute - BCM Institute)

2. The selection and implementation of appropriate options for dealing with risk.

(Source: Singapore Standard 540 - SS 540:2008)

3. The selection and implementation of relevant options for managing risk. The key treatments include:

Acceptance - risks are retained by the organization
Avoidance - deciding not to carry on with the proposed activities due to the risk being unacceptable or finding another alternative that is more acceptable.
Reduction - reducing the likelihood and/or consequence of the risk
Transfer - transferring the risk in part or in totality to another. Insurance is an example of risk transfer.

(Source: Business Continuity Institute - BCI)

4. A systematic process of deciding which risks can be eliminated or reduced by remedial action and which must be tolerated.

(Source: ENISA - the European Network and Information Security Agency. BCM & Resilience Glossary)

Retrieved from "http://www.bcmpedia.org/wiki/Risk_Treatment"

Personal tools

BCMpedia. A Wiki Glossary for Business Continuity Management (BCM) and Disaster Recovery (DR).

Search

Navigation

Resources

Knowledge

BCM Glossary

Books

Acknowledgment

Toolbox

Risk Treatment