Browse Definitions :
Definition

ABC analysis (Pareto analysis)

ABC analysis, also known as Pareto analysis, is a method used to categorize something according to its importance or value in a given context. The practice is commonly used in IT (information technology) and business to improve the efficient use of resources in areas including procurement, staff evaluation, marketing, inventory management, customer relationship management (CRM) and supplier relationship management (SRM).

Determining the importance of items or entities helps guide further decisions, such as the level of resources that should be devoted to their oversight. In procurement, for example, ABC analysis can be used to help evaluate items according to the amount of money spent on them. To perform this type of ABC analysis, a list of items is generated in top-down order based on cost per item over a defined time period. Category A might include the top 20 percent of items, which account for 80 percent of the money spent on the entire list. (This 80/20 rule is known as the Pareto principle, which is why this method is sometimes called Pareto analysis.) Category B might be made up of the next 30 percent of items, which represent approximately 15 percent of the total money spent; category C might comprise the bottom 50 percent of the items, which account for just five percent of the total.

This categorization provides a clear basis for determining how stringent the controls and documentation should be for managing these three categories of items. Category A should have the tightest controls and all processes involving them should be scrupulously documented. Category B items require less careful oversight and Category C items should involve the least administrative resources possible for responsible management.

This was last updated in May 2016

Continue Reading About ABC analysis (Pareto analysis)

SearchCompliance
  • OPSEC (operations security)

    OPSEC (operations security) is a security and risk management process and strategy that classifies information, then determines ...

  • smart contract

    A smart contract is a decentralized application that executes business logic in response to events.

  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

SearchSecurity
  • buffer overflow

    A buffer overflow occurs when a program or process attempts to write more data to a fixed-length block of memory, or buffer, than...

  • biometric verification

    Biometric verification is any means by which a person can be uniquely identified by evaluating one or more distinguishing ...

  • password

    A password is a string of characters used to verify the identity of a user during the authentication process.

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • change control

    Change control is a systematic approach to managing all changes made to a product or system.

  • disaster recovery (DR)

    Disaster recovery (DR) is an organization's ability to respond to and recover from an event that affects business operations.

SearchStorage
  • What is RAID 6?

    RAID 6, also known as double-parity RAID, uses two parity stripes on each disk. It allows for two disk failures within the RAID ...

  • PCIe SSD (PCIe solid-state drive)

    A PCIe SSD (PCIe solid-state drive) is a high-speed expansion card that attaches a computer to its peripherals.

  • VRAM (video RAM)

    VRAM (video RAM) refers to any type of random access memory (RAM) specifically used to store image data for a computer display.

Close