21 Questions
A general indication of significant areas of ______ is provided.
risk
The value of information (CIA) is expressed in ______ terms with supporting rationale.
monetary
Risk assessment results are derived and expressed in management's language, ______ value, percentages, and probability annualized.
monetary
Meaningful ______ analysis is supported in quantitative risk assessment.
statistical
The ______ of calculations is a con of quantitative risk assessment.
complexity
Not practical to execute a ______ risk assessment without using a recognized automated tool and associated knowledge bases.
quantitative
A ______ amount of information gathering is required for a quantitative risk assessment.
substantial
Standard, independent ______ population and threat frequency knowledgebase not yet developed and maintained.
Threat
Quantitative risk assessment requires knowledge of ______ to physical assets and stored information.
threats
A recognized automated tool is required for a ______ risk assessment.
quantitative
Recognized automated tools and associated knowledge bases are necessary for a ______ risk assessment.
quantitative
Quantitative risk analysis attempts to assign independently ______ numeric numbers to all elements of the risk analysis
objective
Quantitative risk analysis deals with ______ values
monetary
Annualized Loss Expectancy (ALE) is calculated by ______ Single Loss Expectancy X Annualized Rate of Occurrence
multiplying
Exposure Factor (EF) is a measure of the ______ of loss or impact on the value of an asset
magnitude
Single Loss Expectancy (SLE) is calculated by ______ Asset Value X Exposure Factor
multiplying
Annualized Rate of Occurrence (ARO) is the ______ with which a threat is expected to occur
frequency
The probability of an event can range from ______ to 1
0
Quantitative risk analysis uses ______ to calculate the risk
algorithms
In the formula ALE=ARO X (Asset Value X Exposure Factor), ALE stands for ______ Loss Expectancy
Annualized
Safeguard Effectiveness is the degree, expressed as a ______, to which a safeguard can be characterized as effectively mitigating a vulnerability
percent
Test your understanding of risk management concepts, including risk analysis, quantitative and qualitative risk analysis, and risk assessment. Learn how to identify and evaluate risks in a target environment.
Make Your Own Quizzes and Flashcards
Convert your notes into interactive study material.
Get started for free