Chapter 2. Risk Analysis—Identifying and Prioritizing Needs

with Christopher Alberts and Audrey Dorofee

In This Chapter

2.1 Risk Management Concepts

2.2 Mission Risk

2.3 Mission Risk Analysis

2.4 Security Risk

2.5 Security Risk Analysis

2.6 Operational Risk Analysis—Comparing Planned to Actual

2.7 Summary

Risk management in systems acquisition and development has typically focused exclusively on cost and schedule concerns. Organizations fund desired features and functions selected for implementation based on cost estimates, budget availability, and perceived criticality of need. Organizations closely monitor changes in any of these three areas and make adjustments to planned delivery dates and features based on risk evaluation. ...

Get Cyber Security Engineering: A Practical Approach for Systems and Software Assurance now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial