Glossary · ERM

Risk Mitigation

Actions taken to reduce the likelihood or impact of identified risks to acceptable levels through controls or countermeasures.

Full definition

Risk mitigation encompasses all measures that decrease risk exposure, including implementing controls, process redesigns, technology solutions, or behavior changes. Unlike risk avoidance (eliminating the activity), mitigation accepts some residual risk while reducing it to tolerable levels. Installing firewalls, encryption, and intrusion detection systems mitigates cyber risks without eliminating internet connectivity. Effective mitigation balances cost, operational impact, and risk reduction, selecting controls that provide the best return on risk-adjusted capital. Organizations prioritize mitigation investments based on risk assessments and treatment plans.

risk treatmentcontrolsimplementationreduction

Free account required

Unlock the full encyclopedia

Full term breakdowns are free — just sign in to continue.

AI Framework Finder — get 4 matched frameworks for your industry.
1000+ glossary terms with detailed definitions + examples.
Save assessments, share via public link, export PDF.

Made with Emergent

RiskPedia — The Risk Framework Encyclopedia & AI Advisor

Frameworks indexed

Risk Mitigation

Unlock the full encyclopedia