richardk/iso27diy-corp
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

removed emojis, merged 2 folders, removed duplication

Browse source
This commit is contained in:
Richard Kranendonk 2026-05-11 16:47:35 +02:00
parent 9b7b3a3a85
commit 24403ce731
92 changed files with 106 additions and 1432 deletions
Download patch file Download diff file Expand all files Collapse all files

15
Corpus/Drafts and Ideas/Risk appetite.md
View file

@ -1,15 +0,0 @@
Risk appetite is "The types and amount of risk, on a broad level, an organization is willing to accept in its pursuit of value." [NIST](https://csrc.nist.gov/glossary/term/risk_appetite)
According to the PMBOK® Guide [(source)](http://cybersecurity-materiality.com/):
- Risk Tolerance is the _"specified range of acceptable results."_
- Risk Threshold is the _"level of risk exposure above which risks are addressed and below which risks may be accepted."_
- Risk Appetite is the _"degree of uncertainty an organization or individual is willing to accept in anticipation of a reward."_
Articulate the risk appetite to:
- help guide risk and reward decision-making
- help to embed the right risk culture
See [Topical InfoSec Kanbans](../Literature%20notes/Topical%20InfoSec%20Kanbans.md) for inspiration.
See also [Risk tolerance](..//Risk%20tolerance.md)