CISSP - Security and Risk Management - Section 1.9
Understand and apply risk management concepts including risk identification, assessment, response, control selection, and continuous monitoring.
Apply risk management concepts including threat and vulnerability identification, quantitative and qualitative risk assessment, risk response options, and control assessment to reduce organisational exposure. Design a continuous monitoring programme that tracks residual risk and triggers reassessment when the threat environment changes.
threat and vulnerability identificationrisk assessmentrisk responsecontrol assessmentcontinuous monitoring
More in this domain
Back to all Security and Risk Management objectives, or the CISSP cert hub.
Examworthy is not affiliated with or endorsed by (ISC)2. Original, blueprint-aligned practice material only.