A risk basically consists of two factors – the probability of something going wrong and the negative consequenses it entails. Organizations and businesses operate in a world of uncertainty. Unexpected external and internal events can have repercussions on economic performance, brand reputation, employee safety, the surrounding environment, customer relations etc.
Risk analyzes aim to identify and value the risks which can affect the business in a negative way. Risk analysis enables working with either eliminating, mitigating, or completely avoiding the identified risks. The risk analysis can be applied within many different areas and in many different situations. It can, for example, surround information security as a whole or for separate processes within the business.