Chapter 25

Applying Appropriate Risk Strategies

This chapter covers the following topics:

  • Risk Assessment: This section covers likelihood, impact, qualitative vs. quantitative assessment, exposure factor, asset value, total cost of ownership (TCO), return on investment (ROI), mean time to recovery (MTTR), mean time between failure (MTBF), annualized loss expectancy (ALE), annualized rate of occurrence (ARO), single loss expectancy (SLE), and gap analysis.

  • Risk Handling Techniques: This section covers the techniques transfer, accept, avoid, and mitigate.

  • Risk Types: This section covers inherent and residual risk and exceptions.

  • Risk Management Life Cycle: This section covers the identify, assess, control, and review steps in risk management ...

Get CompTIA Advanced Security Practitioner (CASP+) CAS-004 Cert Guide now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.