Objectivity implies a guarantee against bias, intentional or accidental. Emotions or prejudices must be controlled. Objectivity means presenting a just view of the world as it really is.
If a Security Risk Assessment (SRA) is to be objective, three conditions must be met.
Risk should be objectively identified.
Risk should be objectively described.
Risk should be objectively quantified.
All three conditions must be met, or the SRA will not constitute an objective statement about security risk.
No comments:
Post a Comment