security threat is a potential happening that may have an undesirable effect on the system, its resources, or the organization as a whole. Vulnerability is the weakness that makes it possible for the threat to occur. There are a number of threats that can occur on a system, and are usually grouped together since some overlap.

Errors and Omissions -- Data entry, data verification, programming bugs.

Fraud and Theft -- Skimming and/or controlling access to the system for profit.

Employee (or Outside) sabotage -- Destroying information or planting viruses, stealing proprietary data or customer information, etc. (NIST, 2012).

Similarly, there are a number of losses that can occur based on threat and vulnerability; some more serious than others, and all somewhat dependent on the type of organization under analysis. For instance, a bank's security loss might be different than an academic institution's, but both are a data loss. Losses may...
[ View Full Essay]