O'Reilly logo

Information Risk Management: A practitioner’s guide by Sutton, David

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

APPENDIX A TAXONOMIES AND DESCRIPTIONS

Taxonomies are simply ways of ordering or classifying information, and can help us to understand concepts through either diagrams or written explanations. For clarity, this Appendix includes both forms for the following areas:

  • an overall taxonomy of information risk;
  • typical impacts or consequences.

It should be noted that these are simply the author’s interpretation, and are not necessarily complete in terms of all possibilities, or to the deepest level of abstraction.

INFORMATION RISK

Information risk is the combination of the impact or consequence of a threat or hazard on an information asset and likelihood or probability of its doing so. Figure A.1 illustrates the key components.

Figure A.1 An overall ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required