Risk Evaluation










              According to ISO 31000, the process of risk

                  evaluation involves assessing each risk
                  against the objectives of the project and

                  external criteria to see whether the risk and/or

                  its magnitude (exposure) are acceptable or

                  tolerable to the project.


              There is typically no “right” answer when
                  evaluating a risk and/or constituting what an

                  acceptable risk is.


              Evaluating risks in the organization are

                  dependent on an organization’s “appetite”
                  or tolerance for risk.