IT risk

Summary

Information technology risk, IT risk, IT-related risk, or cyber risk is any risk relating to information technology. While information has long been appreciated as a valuable and important asset, the rise of the knowledge economy and the Digital Revolution has led to organizations becoming increasingly dependent on information, information processing and especially IT. Various events or incidents that compromise IT in some way can therefore cause adverse impacts on the organization's business processes or mission, ranging from inconsequential to catastrophic in scale. Assessing the probability or likelihood of various types of event/incident with their predicted impacts or consequences, should they occur, is a common way to assess and measure IT risks. Alternative methods of measuring IT risk typically involve assessing other contributory factors such as the threats, vulnerabilities, exposures, and asset values. Definitions ISO IT risk: the potential that a given

Official source

https://en.wikipedia.org/wiki/IT_risk

About this result

This page is automatically generated and may contain information that is not correct, complete, up-to-date, or relevant to your search query. The same applies to every other page on this website. Please make sure to verify the information with EPFL's official sources.

Related publications (20)

Related publications

Related people (3)

Related people

Related units (4)

Related units

Related concepts (10)

Related concepts

Related courses (6)

Related courses

Related lectures (10)

Related lectures

Introduction to the IRGC Risk Governance Framework

Marcel Thomas Bürkler, Marie-Valentine Renée Agnès Florin

The IRGC Framework recommends a holistic, multidisciplinary and multistakeholder approach to risk. It supports processes that aim to provide and structure scientific evidence about a risk in a societal context. It helps decision-makers analyse the major ambiguities and controversies that may affect the management of a risk. The Framework provides guidance to cope with risks in situations of high complexity, uncertainty or ambiguity. It can support the detection of current or potential deficits within the risk governance process, and provide guidance for their remediation. Its application enables decision-makers to act on the basis of evidence, transparent assumptions, and broad societal values and interests. The IRGC Risk Governance Framework is a generic resource meant to be tailored to the specific context and needs of each risk governing organisation. The Framework as a whole -or specific parts of it- are often used as a basis or inspiration for an organisation to develop its own risk management framework.

EPFL2017

Using stratospheric aerosol injection to alleviate global warming: when?

Marie-Valentine Renée Agnès Florin

Stratospheric aerosol injection (SAI), a type of solar radiation modification (SRM), has the potential to reduce global warming caused by excessive greenhouse gases in the atmosphere. However, there is currently widespread opposition to it, because deploying it would entail a number of uncertainties and risks. Here, we present a decision framework to help policymakers consider using SAI. Such a framework would be necessary if concrete evidence is found that SAI can contribute to reducing warming and that its related risks are acceptable. Of particular importance is the establishment of strict criteria for when SAI may or should be started, and when it should be stopped.

EPFL International Risk Governance Center (IRGC).2021

, , , , , ,

In the past few years, we have witnessed a rise in the popularity of ride-hailing services (RHSs), an online marketplace that enables accredited drivers to use their own cars to drive ride-hailing users. Unlike other transportation services, RHSs raise significant privacy concerns, as providers are able to track the precise mobility patterns of millions of riders worldwide. We present the first survey and analysis of the privacy threats in RHSs. Our analysis exposes high-risk privacy threats that do not occur in conventional taxi services. Therefore, we propose PrivateRide, a privacy-enhancing and practical solution that offers anonymity and location privacy for riders, and protects drivers’ information from harvesting attacks. PrivateRide lowers the high-risk privacy threats in RHSs to a level that is at least as low as that of many taxi services. Using real data-sets from Uber and taxi rides, we show that PrivateRide significantly enhances riders’ privacy, while preserving tangible accuracy in ride matching and fare calculation, with only negligible effects on convenience. Moreover, by using our Android implementation for experimental evaluations, we show that PrivateRide’s overhead during ride setup is negligible. In short, we enable privacy-conscious riders to achieve levels of privacy that are not possible in current RHSs and even in some conventional taxi services, thereby offering a potential business differentiator.

2017