Understanding Risk Management Flashcards
Fill in the blanks
1) ____ is the likelihood that a threat will exploint a vulnerability
2) A ____ is a weakness
3) A ____ is a potential danger that risks the c____, i_____, or a____ of data or a system
1) Risk
2) vulnerability
3) Threat, confidentiality, integrity, availability
what is residual risk? Who is responsible for residual risk?
The amount of risk that remains after managing the identified risk
Senior Management are responsible for residual risk
primary goal of risk management is…
to reduce the risk to a level that the organization will accept
what is the most common method of transferring risk?
purchasing insurance or outsourcing
A risk assessment starts by first identifying what?
assets and prioritizing high-value value assets
What are the two types of measurements used in risk assessment?
Quantatative and Qualitative
In quantitative values, ARO indicates what?
How many times the loss will occur in a year.
ARO = Annual Rate of Occurrence.
In quantitative values, what is the cost of any single loss referred to as?
SLE = Single Loss Expectancy
How is the Annual Loss Expectancy calculated?
SLE * ARO
A supply chain assessment includes all the raw materials and what?
processes required to create and distribute a finished product