O'Reilly logo

CISM Certified Information Security Manager All-in-One Exam Guide by Peter H. Gregory

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

CHAPTER 3

Information Risk Management

In this chapter, you will learn about

• Benefits and outcomes from an information risk management perspective

• Risk assessment and risk management frameworks

• Developing a risk management strategy

• The risk management life-cycle process

• Integrating risk management into an organization’s practices and culture

• The components of a risk assessment: asset value, vulnerabilities, threats, and probability and impact of occurrence

• Risk treatment options: mitigate, accept, transfer, avoid

• The risk register

• Monitoring and reporting risk

This chapter covers CISM Domain 2, “Information Risk Management.” The topics in this chapter represent 30 percent of the Certified Information Security Manager (CISM) ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required