Quiz 5 - IT Risk Management
10 Questions
50 Views

Choose a study mode

Play Quiz
Study Flashcards
Spaced Repetition
Chat to lesson

Podcast

Play an AI-generated podcast conversation about this lesson

Questions and Answers

What is the process which identifies suitable controls to mitigate each risk to some acceptable level?

  • Risk Analysis
  • Risk Treatment (correct)
  • Risk Management
  • Risk Assessment
  • What formal approach is followed, in Risk Analysis.

  • Partial
  • Total
  • Bottom-up (correct)
  • Top-down
  • What is the overall process of risk analysis and risk evaluation?

  • Risk Analysis
  • Risk Treatment
  • Risk Assessment (correct)
  • Residual Risk
  • What is the remaining risk after controls have been implemented?

    <p>Residual Risk</p> Signup and view all the answers

    Choose the missing word:

    On the Tactical Management Level, executive management uses ____ Analysis to identify possible risks.

    <p>Event/Impact</p> Signup and view all the answers

    Choose the missing word: Besides the Magnitude of gains and losses, another factor associated with Risk is ____.

    <p>Probability/Frequency</p> Signup and view all the answers

    Choose the missing words: Normally, a ____ can only influence an ____ through a ____.

    <p>Threat; asset; vulnerability</p> Signup and view all the answers

    Choose the missing word: Magnitude of gains and losses is also known as the ____ of risk.

    <p>Impact</p> Signup and view all the answers

    What are the coordinated activities called, which direct and control an organization, regarding risk?

    <p>Risk Management</p> Signup and view all the answers

    Choose the missing word: Probability normally refers to the combination of the threat and the ____.

    <p>Vulnerability</p> Signup and view all the answers

    Study Notes

    Risk Mitigation and Analysis Process

    • Identifying suitable controls to mitigate risks involves assessing each risk against predetermined criteria to ensure an acceptable level of exposure.
    • A formal approach is structured during Risk Analysis, which includes systematic methodologies to identify, assess, and prioritize risks.

    Risk Analysis and Evaluation Process

    • The overall process of risk analysis entails recognizing potential hazards, assessing the severity of their impact, and determining the likelihood of occurrence.
    • Risk evaluation follows, comparing estimated risks against risk criteria to make informed decisions on risk management strategies.

    Remaining Risk

    • Remaining risk, or residual risk, is the level of risk that persists after controls and mitigation measures have been implemented.

    Tactical Management Level

    • On the Tactical Management Level, executive management uses Risk Analysis to identify possible risks.

    Factors of Risk

    • Besides the Magnitude of gains and losses, another factor associated with risk is Probability.

    Influence of Risk Factors

    • Normally, a Manager can only influence an Outcome through a Decision.

    Magnitude of Risk

    • Magnitude of gains and losses is also known as the Severity of risk.

    Risk Management Activities

    • The coordinated activities that direct and control an organization regarding risk are called Risk Management.

    Probability in Risk Analysis

    • Probability in risk analysis normally refers to the combination of the threat and the Vulnerability.

    Studying That Suits You

    Use AI to generate personalized quizzes and flashcards to suit your learning preferences.

    Quiz Team

    More Like This

    Use Quizgecko on...
    Browser
    Browser