Podcast
Questions and Answers
A general indication of significant areas of ______ is provided.
A general indication of significant areas of ______ is provided.
risk
The value of information (CIA) is expressed in ______ terms with supporting rationale.
The value of information (CIA) is expressed in ______ terms with supporting rationale.
monetary
Risk assessment results are derived and expressed in management's language, ______ value, percentages, and probability annualized.
Risk assessment results are derived and expressed in management's language, ______ value, percentages, and probability annualized.
monetary
Meaningful ______ analysis is supported in quantitative risk assessment.
Meaningful ______ analysis is supported in quantitative risk assessment.
Signup and view all the answers
The ______ of calculations is a con of quantitative risk assessment.
The ______ of calculations is a con of quantitative risk assessment.
Signup and view all the answers
Not practical to execute a ______ risk assessment without using a recognized automated tool and associated knowledge bases.
Not practical to execute a ______ risk assessment without using a recognized automated tool and associated knowledge bases.
Signup and view all the answers
A ______ amount of information gathering is required for a quantitative risk assessment.
A ______ amount of information gathering is required for a quantitative risk assessment.
Signup and view all the answers
Standard, independent ______ population and threat frequency knowledgebase not yet developed and maintained.
Standard, independent ______ population and threat frequency knowledgebase not yet developed and maintained.
Signup and view all the answers
Quantitative risk assessment requires knowledge of ______ to physical assets and stored information.
Quantitative risk assessment requires knowledge of ______ to physical assets and stored information.
Signup and view all the answers
A recognized automated tool is required for a ______ risk assessment.
A recognized automated tool is required for a ______ risk assessment.
Signup and view all the answers
Recognized automated tools and associated knowledge bases are necessary for a ______ risk assessment.
Recognized automated tools and associated knowledge bases are necessary for a ______ risk assessment.
Signup and view all the answers
Quantitative risk analysis attempts to assign independently ______ numeric numbers to all elements of the risk analysis
Quantitative risk analysis attempts to assign independently ______ numeric numbers to all elements of the risk analysis
Signup and view all the answers
Quantitative risk analysis deals with ______ values
Quantitative risk analysis deals with ______ values
Signup and view all the answers
Annualized Loss Expectancy (ALE) is calculated by ______ Single Loss Expectancy X Annualized Rate of Occurrence
Annualized Loss Expectancy (ALE) is calculated by ______ Single Loss Expectancy X Annualized Rate of Occurrence
Signup and view all the answers
Exposure Factor (EF) is a measure of the ______ of loss or impact on the value of an asset
Exposure Factor (EF) is a measure of the ______ of loss or impact on the value of an asset
Signup and view all the answers
Single Loss Expectancy (SLE) is calculated by ______ Asset Value X Exposure Factor
Single Loss Expectancy (SLE) is calculated by ______ Asset Value X Exposure Factor
Signup and view all the answers
Annualized Rate of Occurrence (ARO) is the ______ with which a threat is expected to occur
Annualized Rate of Occurrence (ARO) is the ______ with which a threat is expected to occur
Signup and view all the answers
The probability of an event can range from ______ to 1
The probability of an event can range from ______ to 1
Signup and view all the answers
Quantitative risk analysis uses ______ to calculate the risk
Quantitative risk analysis uses ______ to calculate the risk
Signup and view all the answers
In the formula ALE=ARO X (Asset Value X Exposure Factor), ALE stands for ______ Loss Expectancy
In the formula ALE=ARO X (Asset Value X Exposure Factor), ALE stands for ______ Loss Expectancy
Signup and view all the answers
Safeguard Effectiveness is the degree, expressed as a ______, to which a safeguard can be characterized as effectively mitigating a vulnerability
Safeguard Effectiveness is the degree, expressed as a ______, to which a safeguard can be characterized as effectively mitigating a vulnerability
Signup and view all the answers
