Chapter 3. Risk Management
This chapter covers the following official CompTIA Security+, SY0-301 exam objectives:
• Exemplify the concepts of confidentiality, integrity, and availability (CIA)
• Explain risk-related concepts
• Carry out appropriate risk mitigation strategies
• Explain the importance of security-related awareness and training
(For more information on the official CompTIA Security+, SY0-301 exam topics, see the “About the CompTIA Security+, SY0-301 Exam” section in the Introduction.)
The traditional “C-I-A Triad” of security directives includes maintaining the confidentiality, integrity, and availability of data and services. Threats to these three principles are constantly present and evolving. Defensive measures must be put ...
Get CompTIA® Security+™ SY0-301 Exam Cram, Third Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.