CIPRNet CIP glossary
terms of reference against which the significance of a risk is evaluated
NOTE 1 Risk criteria are based on organizational objectives, and external and internal context.
NOTE 2 Risk criteria can be derived from standards, laws, policies and other requirements. [© ISO Guide 73:2009]