Cyber information security risk

Definition
A cyber information security risk is a

"[r]isk that could expose the agency to exploitation of vulnerabilities to compromise the confidentiality, integrity, or availability of the information being processed, stored, or transmitted by its information systems."