固有風險(Inherent risk)是風險管理中的詞語,是在未進行風險控管措施之前的風險[1][2]。另一種固有風險的定義是:在使用既有不完整或不盡理想的風險控管方式後,風險的程度[3][4]

參考資料

編輯
  1. ^ Gregory Monahan. Enterprise Risk Management: A Methodology for Achieving Strategic Objectives. John Wiley & Sons. 2008 [2020-06-02]. ISBN 9780470372333. (原始內容存檔於2019-12-15). 
  2. ^ Rachel Slabotsky. Inherent Risk vs. Residual Risk Explained in 90 Seconds. www.fairinstitute.org. FAIR Institute. 7 September 2017 [10 October 2018]. (原始內容存檔於2020-04-02). Inherent risk represents the amount of risk that exists in the absence of controls. 
  3. ^ Rachel Slabotsky. Inherent Risk vs. Residual Risk Explained in 90 Seconds. www.fairinstitute.org. FAIR Institute. 7 September 2017 [10 October 2018]. (原始內容存檔於2020-04-02). Inherent risk is current risk level given the existing set of controls rather than the hypothetical notion of an absence of any controls. 
  4. ^ Jack Jones. Measuring and Managing Information Risk: A FAIR Approach. FAIR Institute.