You work for a company that processes customers' personal information as part of its business operations. This part of operations presents a risk to the company. What is this type of risk called?
Correct Incorrect Unanswered Report Issue Answer Description
Inherent risk is the term used to describe the level of risk involved with using a process/operation before the company does anything to reduce/mitigate the risk.
Wikipedia
Inherent risk, in risk management, is an assessed level of raw or untreated risk; that is, the natural level of risk inherent in a process or activity without doing anything to reduce the likelihood or mitigate the severity of a mishap, or the amount of risk before the application of the risk reduction effects of controls. Another definition is that inherent risk is the current risk level given the existing set of controls, which may be incomplete or less than ideal, rather than an absence of any controls.Inherent risk is contrasted with residual risk, which is the amount of risk left after treatment and added security measures.
Inherent_risk - Wikipedia, the free encyclopedia Subscribe to avoid duplicate questions and track your progress over time