Navigating the Five Common Responses to Negative Risk
The enterprise has the ability, risk maturity, and the appropriate people, processes and technology to execute the chosen risk response option.
- The enterprise has the ability, risk maturity, and the appropriate people, processes and technology to execute the chosen risk response option.
- The enterprise has considered how each risk response option influences the components of risk (loss frequency, loss magnitude and risk velocity).
- Having an optimized risk response process is essential for helping enterprises manage risk efficiently, says Paul Phillips, CISA, CISM, MBA, ISACA IT Risk Professional Practices Lead.
- Other available risk resources from ISACA include Risk IT Framework, 2nd Edition and COBIT Focus Area: Information and Technology Risk .