The overall process of identifying, analyzing, and evaluating risks. It involves the estimation of the risk’s likelihood and the magnitude of its impact and is an integral part of the risk management process. The objective of risk assessment is to enable the organization to decide whether the risk is acceptable or whether it is severe enough to warrant treatment or mitigation measures.