CompTIA Security+ SY0-601 Cert Guide, 5th Edition

Chapter 34

Summarizing Risk Management Processes and Concepts

This chapter covers the following topics related to Objective 5.4 (Summarize risk management processes and concepts) of the CompTIA Security+ SY0-601 certification exam:

Risk types
- External
- Internal
- Legacy systems
- Multiparty
- IP theft
- Software compliance/licensing
Risk management strategies
- Acceptance
- Avoidance
- Transference
  - Cybersecurity insurance
- Mitigation
Risk analysis
- Risk register
- Risk matrix/heat map
- Risk control assessment
- Risk control self-assessment
- Risk awareness
- Inherent risk
- Residual risk
- Control risk
- Risk appetite
- Regulations that affect risk posture
- Risk assessment types
  - Qualitative
  - Quantitative
- Likelihood of occurrence
- Impact
- Asset value
- Single loss expectancy ...

Get CompTIA Security+ SY0-601 Cert Guide, 5th Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CompTIA Security+ SY0-601 Cert Guide, 5th Edition by Omar Santos, Ron Taylor, Joseph Mlodzianowski

Chapter 34

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly