According to the ISA/IEC 62443 Cybersecurity Fundamentals, the risk matrix is a tool used to assess the risk of a particular event. The risk matrix is divided into three categories: likelihood, consequence, and risk. The likelihood is the probability that an event will occur, the consequence is the impact that the event will have, and the risk is the combination of the two. In this case, the risk of a medium likelihood event with high consequence is a high risk, as shown by the red cell in the matrix. References:
ISA/IEC 62443 Cybersecurity Fundamentals
[ISA/IEC 62443 Cybersecurity Certificate Program]
[Cybersecurity Library]
[Using the ISA/IEC 62443 Standard to Secure Your Control Systems]
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit