Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Glossary
A  |  B  |  C  |  D  |  E  |  F  |  G  |  H  |  I  |  J  |  K  |  L  |  M  |  N  |  O  |  P  |  Q  |  R  |  S  |  T  |  U  |  V  |  W  |  X  |  Y  |  Z

residual risk

Definitions:

  Portion of risk remaining after security measures have been applied.
Sources:
CNSSI 4009-2015
NIST SP 800-30 Rev. 1 under Residual Risk from CNSSI 4009
NIST IR 8323r1 from CNSSI 4009-2015

  Portion of risk remaining after controls/countermeasures have been applied.
Sources:
NIST SP 800-161r1-upd1 [11/1/2024 errata update]

  Risk that remains after risk responses have been documented and performed.
Sources:
NISTIR 8286 under Residual Risk