<P> So, IT risk is narrowly focused on computer security, while information security extends to risks related to other forms of information (paper, microfilm). Information assurance risks include the ones related to the consistency of the business information stored in IT systems and the information stored by other means and the relevant business consequences . </P> <P> Insurance is a risk treatment option which involves risk sharing . It can be considered as a form of contingent capital and is akin to purchasing an option in which the buyer pays a small premium to be protected from a potential large loss . </P> <P> Insurance risk is often taken by insurance companies, who then bear a pool of risks including market risk, credit risk, operational risk, interest rate risk, mortality risk, longevity risks, etc . </P> <P> Means of assessing risk vary widely between professions . Indeed, they may define these professions; for example, a doctor manages medical risk, while a civil engineer manages risk of structural failure . A professional code of ethics is usually focused on risk assessment and mitigation (by the professional on behalf of client, public, society or life in general). </P>

The force of the effect of the risk if it occurs is called