Questions and Answers
What is the focus of a top-down approach to scenario development?
Understanding business goals and their impact on risk events
Why is the top-down approach suitable for general risk management?
It looks at both IT- and non-IT-related events
What is a benefit of the top-down approach in terms of management buy-in?
It is more general, making it easier to achieve management buy-in
What is the focus of a bottom-up approach to developing risk scenarios?
Signup and view all the answers
Why is the bottom-up approach not as suitable for general risk management?
Signup and view all the answers
What is a characteristic of the scenarios developed using the top-down approach?
Signup and view all the answers