Chapter 10. Information Security Governance and Risk Management

Techniques you’ll need to master

Risk management

Security management concepts

Qualitative risk analysis

Quantitative risk analysis

Hybrid risk analysis

Resource protection techniques

The role of polices, procedures, guidelines, and baselines

Data-classification criteria

Security roles

Risk calculations


Information security and risk management identifies an organization’s ...

Get CISSP Exam Cram, Third Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.