CHAPTER 4Risk Management: Objective 1.2 Understand the Risk Management Process

Risks abound in the world of information security. From hackers and malware to lost devices and missing security patches, information security professionals have a lot on their plate. Of course, addressing each risk takes both time and money. Risk management is the practice of identifying, assessing, and treating the risks facing an organization.

In this chapter, you'll learn about CC objective 1.2. The following subobjectives are covered in this chapter:

Risk management (e.g., risk priorities, risk tolerance)
Risk identification, assessment, and treatment

RISK TYPES

The main responsibility of a cybersecurity professional is to manage risk. Organizations face ...

Get CC Certified in Cybersecurity Study Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CC Certified in Cybersecurity Study Guide by Mike Chapple

CHAPTER 4Risk Management: Objective 1.2 Understand the Risk Management Process

RISK TYPES

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly