CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide, Second Edition (Exam CS0-002), 2nd Edition

CHAPTER 20 Security Concepts in Support of Organizational Risk Mitigation

In this chapter you will learn:

• The importance of a business impact analysis

• How to perform risk assessments to select effective controls

• How to evaluate the effectiveness of security staff and controls

• Important sources of supply chain risk

Risk comes from not knowing what you’re doing.

—Warren Buffett

Risk is a constant companion in life. We can take measures to reduce it or transfer it. We might even accept it as inevitable and all but ignore it, but in the end, it is always there. As a cybersecurity analyst, part of your job is to manage risk consciously for your organization. This means that you must understand the business of your organization and ...

Get CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide, Second Edition (Exam CS0-002), 2nd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide, Second Edition (Exam CS0-002), 2nd Edition by Brent Chapman, Fernando Maymi

CHAPTER 20

Security Concepts in Support of Organizational Risk Mitigation

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly