Chapter 4: Practical Aspects of Information Risk Management

In this chapter, we will discuss the practical aspects of information risk management. We will learn about risk management tools and techniques and other important concepts from the perspective of the CISM exam.

The following topics will be covered in this chapter:

Information asset classification
Asset valuation
Operational risk management
Outsourcing and third-party service providers
Risk management integration with the process life cycle

Let's understand the preceding topics in detail.

Information asset classification

Information asset classification means classifying assets based on their criticality to the business. An asset can be classified as confidential data, private ...

Get Certified Information Security Manager Exam Prep Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Certified Information Security Manager Exam Prep Guide by Hemang Doshi

Chapter 4: Practical Aspects of Information Risk Management

Information asset classification

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly