Technology Risks Flashcards
Risk Event ID
What are the 4 main risks?
B4-52
“SOFI” mnemonic
- S– Strategic Risk
- O– Operating Risk
- F– Financial Risk
- I– Information Risk
Risk Event ID
“S” in SOFI mnemonic
What is Strategic Risk?
B4-52
the risk of choosing inappropriate technology
Risk Event ID
“O” in SOFI mnemonic
What is Operating Risk?
B4-52
the risk of doing the right thing in the wrong way
Risk Event ID
“F” in SOFI mnemonic
What is Financial Risk?
B4-52
the risk of having financial resources lost, wasted, or stolen
Risk Event ID
“I” in SOFI mnemonic
What is Information Risk?
B4-52
the risk of:
- loss of data integrity,
- incomplete transactions,
- or hackers
What are Errors?
B4-52
Unintentional
- -carelessness
- -failure to follow directions
- -ignorance (poor training)
What are Intentional Acts?
B4-52
- -sabotage
- -embezzlements
- -viruses
- -denial of service attacks
What are Disasters?
B4-52
fires, floods, earthquakes, terrorism, war
Threats
What are the 5 threats?
B4-53
- Virus
- Worm
- Trojan Horse
- Denial-of-Service
- Phising
Threats
What is a Virus?
B4-53
- -a piece of a computer program that inserts itself into a program to propagate and cause harm
- -requires a host; cannot run independently
Threats
What is a Worm?
B4-53
- -a program that can run independently and propagate itself over a network
- -a type of virus
Threats
What is a Trojan Horse?
B4-53
A program that appears to have a useful function but contains a hidden unintended function that presents a security risk
Threats
What is a Denial-of-Service Attack?
B4-53
One computer (or group) bombard another computer with a flood of network traffic
Threats
What is Phishing?
B4-53
Sending a phony email to try to lure people to phony websites where they are asked for info that will allow the phisher to impersonate the user
Risk Assessment
What is a Risk?
B4-53
the possibility of harm or loss
