APPENDIX A TAXONOMIES AND DESCRIPTIONS
Taxonomies are simply ways of ordering or classifying information, and can help us to understand concepts through either diagrams or written explanations. For clarity, this Appendix includes both forms for the following areas:
- an overall taxonomy of information risk;
- typical impacts or consequences.
It should be noted that these are simply the author’s interpretation, and are not necessarily complete in terms of all possibilities, or to the deepest level of abstraction.
INFORMATION RISK
Information risk is the combination of the impact or consequence of a threat or hazard on an information asset and likelihood or probability of its doing so. Figure A.1 illustrates the key components.
Figure A.1 An overall ...
Get Information Risk Management: A practitioner’s guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
