Information risk Flashcards

1
Q

What is OSINT?

A

Open source intelligence gathering
Publicly available information from different sources are gathered and used for research

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the three types of vulnerabilities?

A

Technical, Physical, Administrative/procedural

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Risk =

A

Impact * likelihood

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What ISO standard deals with risk management?

A

ISO27005 and ISO3100 series

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are the four stages of risk management?

A

Identification, analysis, treatment, monitoring

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is risk capacity?

A

Maximum amount of risk a business can take before viability is affected

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is risk appetite?

A

Amount of risk a business is willing to accept during its mission - lower than capacity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is risk acceptance?

A

Lowest level of risk a business accepts on a daily basis after treatment has been done

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is risk tolerance?

A

Amount of risk a business can accept if risk was a little more than risk appetite, AKA wriggle room

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What are strategic risks?

A

Risks that affect business in the long term

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are tactical risks?

A

Risks that occur on a regular basis

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What controls help to reduce tactical risks?

A

Preventative, Directive, Detecting, Corrective

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is operational risk?

A

Risk found in daily operation of business

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is a risk matrix?

A

Way of visualizing likelihood of risks happening in a business

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What are the 4 ways of risk treatment?

A

Avoidance, accepting, transfer, mitigation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q
A