Business Impact Analysis, and Inherent and Residual Risk

The aim of this chapter is to detail the differences between business impact analysis (BIA) and risk assessment, learn concepts that are related to BIA, understand the differences between inherent and residual risk, and finally, review how BIA can be used to ensure business continuity (BC) and effective disaster recovery planning.

In this chapter, we will cover the following topics:

  • Differentiating between BIA and risk assessment
  • Key concepts related to BIA
  • Understanding types of risk

With that, let us dive into the first section, in which we will understand the differences between BIA and risk assessment.

Differentiating between BIA and risk assessment

BIA and risk assessment are ...

Get ISACA Certified in Risk and Information Systems Control (CRISC®) Exam Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.