CHAPTER 2 Flashcards

1
Q

The risk analysis team should have clearly defined goals. The following is a short list of what generally is expected from the results of a risk analysis:

A
  • Monetary values assigned to assets
  • Comprehensive list of all possible and significant threats
  • Probability of the occurrence rate of each threat
  • Loss potential the company can endure per threat in a 12-month time span
  • Recommended controls
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

This chapter presents the following:

A
  • Security terminology and principles
  • Protection control types
  • Security frameworks, models, standards, and best practices
  • Security enterprise architecture
  • Risk management
  • Security documentation
  • Information classification and protection
  • Security awareness training
  • Security governance
How well did you know this?
1
Not at all
2
3
4
5
Perfectly