Podcast
Play an AI-generated podcast conversation about this lesson
Questions and Answers
What is the focus of a top-down approach to scenario development?
What is the focus of a top-down approach to scenario development?
- Describing specific cybersecurity-related risk events
- Understanding business goals and their impact on risk events (correct)
- Identifying hypothetical situations envisioned by job functions
- Measuring the impact of already occurred risk events
Why is the top-down approach suitable for general risk management?
Why is the top-down approach suitable for general risk management?
- Senior managers are usually interested in IT
- It focuses on IT-related events only
- It is specific to cybersecurity-related risk events
- It looks at both IT- and non-IT-related events (correct)
What is a benefit of the top-down approach in terms of management buy-in?
What is a benefit of the top-down approach in terms of management buy-in?
- It measures the impact of already occurred risk events
- It is more general, making it easier to achieve management buy-in (correct)
- It describes specific cybersecurity-related risk events
- It focuses on hypothetical situations envisioned by job functions
What is the focus of a bottom-up approach to developing risk scenarios?
What is the focus of a bottom-up approach to developing risk scenarios?
Signup and view all the answers
Why is the bottom-up approach not as suitable for general risk management?
Why is the bottom-up approach not as suitable for general risk management?
Signup and view all the answers
What is a characteristic of the scenarios developed using the top-down approach?
What is a characteristic of the scenarios developed using the top-down approach?
Signup and view all the answers
