5.2 IMPORTANT Flashcards

1
Q

one-time risk assessment

A

part of a one-time project, buying new equipment etc..

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

continous assessments

A

may be part of an existing process, (for change management for example)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

ad hoc assessments

A

performing a risk assessment for one specific purpose.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

recurring assessments

A

risk assessment on a standard schedule. can be internal or required by law

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

qualitative risk assessment

A

identify significant risk factors.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

quantitative risk assessment

A

calculate a specific value.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

ARO

A

Annualized Rate of Occurrence- how often it occurs in a year.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

AV

A

Asset value- value of the asset to the organization

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

EF

A

Exposure factor- percentage of the value lost due to an incident

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

SLE

A

Single Loss Expectancy-monetary loss if a single event occurs.

AV x EF=SLE

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

ALE

A

Annualized Loss Expectancy= ARO x SLE

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

impact of risk analysis

A

life, property, safety, finance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

risk likelihood

A

a qualitative measurement of risk. (low, medium, or high)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

risk probability

A

a quantitative measurement of risk.
a statistical measurement.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

risk appetite

A

risk taking deemed acceptable.

speed limit is 55.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

risk appetite posture

A

qualitative description for readiness to risk. meaning are you (expansionary, conservative, neutral)

17
Q

risk tolerance

A

an acceptable variance (usually larger) from the risk appetite.

speed limit is 55. officer wont chase you depending on how fast over the speed limit you’re going.

18
Q

risk register

A

identify and document the risk associated with each step. apply possible solutions to the identified risks.

19
Q

key risk indicators

A

identify risks that could impact the orgainzation

20
Q

risk owners

A

each indicator is assigned someone to manage the risk

21
Q

risk threshold

A

the cost of mitigation is at least equal to the value gained by mitigation

22
Q

risk mgmt strats

A

transfer, accept, accept with exemption, accept with exception.
avoid
mitigate

23
Q

risk reporting

A

identifies risks, detailed information for each risk

24
Q

Which asymmetric encryption technique provides a comparable level of security with shorter key lengths, making it efficient for cryptographic operations?

A

ECC (Elliptic curve cryptography) is a type of trapdoor function that is efficient with shorter key lengths