May 2019
Intermediate to advanced
688 pages
24h 4m
English
SSCP EXAM OBJECTIVES COVERED IN THIS CHAPTER INCLUDE:
Domain 3: Risk Identification, Monitoring, and Analysis
Defense is a set of strategies, management is about making decisions, and mitigation is a set of tactics chosen to implement those decisions. Integrated information risk management is about protecting what’s important to the organization. It’s about what to protect and why; risk mitigation addresses how. Some outcomes, processes, or assets ...