29 January 2016

Strategic Management: Risk (Definitions)

"The probability of uncertain events occurring, causing positive or negative effects on the objectives of an endeavor." (Margaret Y Chu, "Blissful Data ", 2004)

"An adverse impact on the developer’s business organization due to the occurrence of a product or project risk. The business risk can arise directly from contract terms and conditions (e.g., warranties or consequential damages) or indirectly from loss of future business or reputation. Buyers use terms and conditions to protect their organizations in the event that the developer fails to deliver acceptable products and services on time. Thus, terms and conditions place the developer at risk." (Richard D Stutzke, "Estimating Software-Intensive Systems: Projects, Products, and Processes", 2005)

"Potential loss that can be estimated by an analysis of threat and vulnerability; the casualty contemplated in a contract of insurance. Pure risk occurs from cost without benefit, such as from crime or natural disaster. Dynamic risk reflects calculated exposure that an enterprise may take that can lead to advancement or loss." (Robert McCrie, "Security Operations Management" 2nd Ed., 2006)

"A risk is an undesired event or potential problem which may occur with a certain probability sometime in the future. Risk occurrence is associated with damage; i.e., it has a negative effect on project goals. It may cause cost increases, schedule shifts, quality problems, or other damages." (Lars Dittmann et al, "Automotive SPICE in Practice", 2008)

"The consideration of a situation that might arise that would tend to prevent a strategy or objective from being successfully achieved." (Steven Haines, "The Product Manager's Desk Reference", 2008)

"Possibility of suffering losses on an investment; the sources of risk include inflation, default, politics, etc." (Stefano Caselli, "Private Equity and Venture Capital in Europe", 2009)

"A predictable or unpredictable event that has an uncertain outcome." (Annetta Cortez & Bob Yehling, "The Complete Idiot's Guide® To Risk Management", 2010)

"In general, risk is the probability that a threat agent will be able to exploit a defined vulnerability that would adversely impact the business." (Alex Berson & Lawrence Dubov, "Master Data Management and Data Governance", 2010)

"The possibility of incurring a liability or exposure to asset losses." (Sue Johnson & Gwen Moran, "The Complete Idiot's Guide To Business Plans", 2010)

"Refers to the possibility of occurrence of an event, whether uncertain or of undetermined term, which is not entirely under the control of the people involved and is contrary to their expectations or interest. Risk can be voluntary, when a person acts despite being aware of that possibility." (Humbert Lesca & Nicolas Lesca, "Weak Signals for Strategic Intelligence: Anticipation Tool for Managers", 2011)

"The possibility that an event could occur and interfere with an organization's ability to meet strategic goals or operating plans. Varies across organizations, industries, geographic regions, and time periods." (Leslie G Eldenburg & Susan K Wolcott, "Cost Management 2nd Ed", 2011)

"Risk is the possibility that something unpleasant or unwelcome will happen (NOAD). Risk to data is the possibility that something will negatively affect its quality and make it less fit for use." (Laura Sebastian-Coleman, "Measuring Data Quality for Ongoing Improvement ", 2012)

"The degree of uncertainty of realizing expected future returns of the business resulting from factors other than financial leverage." (Mark L Zyla, "Fair Value Measurement", 2012)

"In the context of business decisions, the cost of a particular outcome. When a set of outcomes are possible, this cost is often weighted by the probability, if known, of that particular outcome occurring. Not to be confused with uncertainty, a term often used incorrectly to communicate the level of risk." (Kenneth A Shaw, "Integrated Management of Processes and Information", 2013)

"Probability, usually of an unwanted event." (Geoff Cumming, "Understanding The New Statistics", 2013)

"The consequences of a realized threat." (Mark Rhodes-Ousley, "Information Security: The Complete Reference, Second Edition, 2nd Ed.", 2013)

"A factor that could result in future negative consequences; usually expressed as impact and likelihood." (Tilo Linz et al, "Software Testing Foundations, 4th Ed", 2014)

"A quantitative measure of the potential damage caused by a specified threat." (Manish Agrawal, "Information Security and IT Risk Management", 2014)

"The effect of uncertainty on objectives" (David Sutton, "Information Risk Management: A practitioner’s guide", 2014)

"The likelihood that a threat will exploit a vulnerability resulting in a loss. Organizations use risk mitigation techniques to reduce risk." (Darril Gibson, "Effective Help Desk Specialist Skills", 2014)

"In investment terms, risk is the uncertainty associated with an investment or asset. A high-risk investment, for example, may yield a high return; but if unsuccessful, it could cause the investor to lose everything. Operational risk is the risk of failure due to shortcomings in procedures, people, or systems." (DK, "The Business Book", 2014)

"A factor that could result in future negative consequences; usually expressed as impact and likelihood." (Tilo Linz et al, "Software Testing Foundations" 4th Ed", 2014)

"Risk is defined as the mathematical product of the loss or damage due to failure and the probability (or frequency) of failure resulting in such damage. Damage comprises any consequences or loss due to failure. The probability of occurrence of a product failure depends on the way the software product is used. The software’s operational profile must be considered here. Therefore, detailed estimation of risks is difficult. Risk factors to be considered may arise from the project (project risks) as well as from the product to be delivered (product risks)." (Andreas Spillner et al, "Software Testing Foundations: A Study Guide for the Certified Tester Exam" 4th Ed., 2014)

"Risk is the product of consequence or impact and likelihood or probability, and is not the same as a threat or hazard. In the context of information risk management, risk is usually taken to have negative connotations. In the wider context of risk, however, it can also bee seen in a positive light and referred to as ‘opportunity’." (David Sutton, "Information Risk Management: A practitioner’s guide", 2014)

"The possibility of an event occurring that will have an impact on the achievement of objectives. Risk is measured in terms of impact and likelihood." (Sally-Anne Pitt, "Internal Audit Quality", 2014)

"The likelihood that a threat will exploit a vulnerability resulting in a loss. Organizations use risk mitigation techniques to reduce risk." (Darril Gibson, "Effective Help Desk Specialist Skills", 2014)

"An uncertainty that might lead to a loss. Losses occur when a threat exploits vulnerability." (Weiss, "Auditing IT Infrastructures for Compliance, 2nd Ed", 2015)

"Business risk is the potential loss due to a weakening in the compet­itive position." (Christopher Donohue et al, "Foundations of Financial Risk" 2nd Ed, 2015)

"Defined as the possible failure to meet your desired and expected objectives due to future, uncertain events." (Thomas C Wilson, "Value and Capital Management", 2015)

"The possibility of suffering harm or loss; Usually, risk involves the statistical chance that an action would pose a threat, resulting in a failure of some kind." (Ken Sylvester, "Negotiating in the Leadership Zone", 2015)

"The probability of a threat agent exploiting a vulnerability and the associated impact." (Adam Gordon, "Official (ISC)2 Guide to the CISSP CBK" 4th Ed., 2015)

"The possible failure to meet your desired and expected objectives due to future, uncertain events." (Thomas C Wilson, "Value and Capital Management", 2015)

"The likelihood of a negative impact event occurring over a period of time, not to be confused with exposure. Example: there is a 30% risk of tornadoes occurring tonight." (Gregory Lampshire, "The Data and Analytics Playbook", 2016)

"The chance of a negative thing happening." (Pamela Schure & Brian Lawley, "Product Management For Dummies", 2017)

"A characterization of harmful events and their associated probabilities with respect to a given system or mission." (O Sami Saydjari, "Engineering Trustworthy Systems: Get Cybersecurity Design Right the First Time", 2018)

"A measure of the extent to which an entity is threatened by a potential circumstance or event, and typically a function of the adverse impacts that would arise if the circumstance or event occurs and the likelihood of occurrence." (William Stallings, "Effective Cybersecurity: A Guide to Using Best Practices and Standards", 2018)

"A factor that could result in future negative consequences; usually expressed as impact and likelihood." (ISTQB)

"A possible event that could cause harm or loss, or affect the ability to achieve objectives" (ITIL)

"The effect of uncertainty on objectives." (ISO Guide 73:2009)

"The effect of uncertainty on objectives, whether positive or negative." (ISO 31000) 

No comments:

Related Posts Plugin for WordPress, Blogger...

About Me

My photo
IT Professional with more than 24 years experience in IT in the area of full life-cycle of Web/Desktop/Database Applications Development, Software Engineering, Consultancy, Data Management, Data Quality, Data Migrations, Reporting, ERP implementations & support, Team/Project/IT Management, etc.