Definition(s):
“Systematic application of procedures and practices to the tasks of identifying, analyzing, prioritizing, and controlling risk“. (SEI, 1993)
Moreover, according to SEI, each risk management paradigm activity follows to identify, analyze, track, control, and communicate.
Source(s):
- Carr, Marvin J., et al. Taxonomy-based risk identification. carnegie-mellon univ pittsburgh pa software engineering inst, 1993.
- W. Boehm. Software risk management: principles and practices. IEEE software vol 8, no 1, pp 32-42, 1991.