# Increasing adoption in related fields
<a name="related-fields"></a>

There is growing interest in many fields for including positive risk because it recognizes the contributions the domain makes to business outcomes. The concept of positive risk has been recently adopted into common project management processes and definitions.

In 2013, the Project Management Institute (PMI) incorporated the definition of positive risk (also called *opportunities*) into the fifth edition of the Project Management Body of Knowledge (PMBOK). PMBOK defines *individual risk* as “an uncertain event or condition that, if it occurs, has a positive or negative effect on one or more project objectives.” It defines overall *project risk* as “the effect of uncertainty on the project as a whole … more than the sum of individual risks within a project, since it includes all sources of project uncertainty … represents the exposure of stakeholders to the implications of variations in project outcome, both positive and negative.”

Unfortunately, PMI’s inclusion of positive outcomes in its definitions of risk doesn’t apply to the cybersecurity industry yet.