SY0-701 - Security Program Management and Oversight - Section 5.2
Explain elements of the risk management process.
Describe the risk management lifecycle from identification and assessment through treatment and monitoring, and explain how a risk register tracks identified risks alongside their likelihood, impact, and assigned owner. Calculate ALE from SLE and ARO to quantify annualised financial exposure, and apply risk appetite and tolerance thresholds to determine whether a risk should be mitigated, transferred, accepted, or avoided.
risk identificationrisk assessmentrisk registerrisk appetite/toleranceALE/SLE/ARO
More in this domain
Back to all Security Program Management and Oversight objectives, or the SY0-701 cert hub.
Examworthy is not affiliated with or endorsed by CompTIA. Original, blueprint-aligned practice material only.