CHAPTER 4

Information Security Risk Response

In this chapter, you will learn about

•   Risk response options and considerations

•   Responding to risk via risk treatment

•   Ownership of risks, risk treatment, and controls

•   Monitoring and reporting on risk

•   Key risk indicators

This chapter covers Certified Information Security Manager (CISM) Domain 2, “Information Security Risk Management,” part B, “Information Security Risk Response.” The Entire Information Security Risk Management domain represents 20 percent of the CISM examination.

Supporting Tasks in the CISM job practice that align with the Information Security Risk Management / Information Security Risk Response domain include:

9.   Compile and present reports to key stakeholders ...

Get CISM Certified Information Security Manager All-in-One Exam Guide, Second Edition, 2nd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.