Upgrade to remove ads
Chapter 4 Assesment
Terms in this set (14)
Risk Management is responding to a negative event when it occurs.
With respect to IT security, a risk can result in either a positive or a negative effect.
According to PMI, which term describes the list of identified risks?
Qualitative Risk analysis
Which type of risk analysis uses formulas and numeric values to indicate risk severity?
Quantitative risk analysis
Which type of risk analysis uses relative ranking?
Qualitative risk analysis
Which risk-analysis value represents the annual probability of a loss?
ARO(Annualized Rate of Occurrence)
Which risk-response option would best describe purchasing fire insurance?
Which risk response would be most appropriate if the impact of a risk becoming reality is negligible?
Which of the following statements best describes the relationship of a BCP to a DRP?
A DRP is a component of a BCP
Which term is used to indicate the amount of data loss that is acceptable?
RPO(Recovery Point Objective)
A(n) ____ identifies pocesses that are critical to the operation of a business.
Business Impact Analysis(BIA)
Which risk-assessment methodology is marketed as a self directed apporach and has 2 different editions for organizations of different sizes?
OCTAVE(Operationally Critical Threat, Asset, and Vulnerability Evaluation)
____ is the US security related act that governs health-related information.
Which US security related act governs security of data specifiacally for the financial industry?
THIS SET IS OFTEN IN FOLDERS WITH...
Chapter 1 Review Questions
YOU MIGHT ALSO LIKE...
NT2580 Chapter 4
Chapter 11 Project Risk Management
Chapter 11 Risk Management
OTHER SETS BY THIS CREATOR