Risk management   _________________________________

• Organizations exist for a specific purpose - providing a service or obtain specific results.
◊ The primary aim of any organization in the private sector is generally related to increasing the value that shareholders receive from the organization;
◊ in the public sector, the interest is focused on providing a service or offering a benefit to the general public. Whatever the purpose of an organization is, the objectives achievement is encumbered with uncertainty, which can either be a barrier to success, or an opportunity.

• The risk is defined as the uncertainty of a result took the form of a positive nature opportunities or threats of actions or events. Risk management includes identifying and assessing risk (inherent risk) and how to respond to the risks. Available resources in the process of risk management are limited, so there would be an optimal response to risk in a certain order of priorities arising from risk assessment.

• Risks can not be avoided in any way, and each organization should take steps necessary to manage the risk to a level considered tolerable and confirmed. Risk management can be applied to all organizations in all areas and all its levels, at any time and functions, projects and specific activities.

• Particularly, the Security Risk Management presents special considerations with regard to risk exposure analysis and risk control means.