Threats and Vunerabilities Flashcards
What do you call something that could cause harm, loss, damage, or compromise to IT systems?
Threats
Natural disasters, cyber-attacks, data integrity breaches, and disclosure of confidential info are all examples of what?
Threats
What is any weakness in the system design or implementation?
Vunerabilities
Software bugs, misconfigured software, improperly protected network devices, missing security patches, and lack of physical security are all examples of what?
Vulnerabilities
Where threats and vulnerabilities intersect…
that is where the risk to enterprise systems and networks lies
Threat + No Vulnerability =
No Risk (and vice versa)
What is Risk Management defined as?
Finding different ways to minimize the likelihood of an outcome occurring and achieve the desired outcomes