CISSP® Certification Domain 1 Security and Risk Management Video Boot Camp for 2022 - Risk Management - Assessment Part

CISSP® Certification Domain 1 Security and Risk Management Video Boot Camp for 2022 - Risk Management - Assessment Part

Assessment

Interactive Video

Information Technology (IT), Architecture

University

Hard

Created by

Quizizz Content

FREE Resource

The video tutorial covers risk analysis, focusing on both qualitative and quantitative methods. It explains the risk analysis matrix, risk registers, and provides practical examples involving laptops and data centers. The tutorial discusses risk mitigation strategies, including risk reduction, transference, and acceptance, and emphasizes the importance of calculating ROI. It also highlights the use of frameworks like NIST for risk management and the necessity of thorough documentation.

Read more

10 questions

Show all answers

1.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the primary purpose of a risk analysis matrix?

To determine the cost of risk mitigation

To identify the number of assets at risk

To calculate the total cost of ownership

To assess the likelihood and consequences of risks

2.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

In quantitative risk analysis, what is the role of a risk register?

To provide a qualitative assessment of risks

To prioritize risks based on multiple factors

To eliminate all risks from the enterprise

To list all possible risks without prioritization

3.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which metric represents the cost of a single incident occurring?

Exposure Factor (EF)

Annualized Loss Expectancy (ALE)

Single Loss Expectancy (SLE)

Asset Value (AV)

4.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

How is the Annualized Loss Expectancy (ALE) calculated?

Risk Score multiplied by Mitigation Cost

Total Cost of Ownership divided by Asset Value

Single Loss Expectancy multiplied by Annual Rate of Occurrence

Asset Value multiplied by Exposure Factor

5.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the asset value of the laptop in the given example?

$10,000

$1,000

$9,000

$25,000

6.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is a potential mitigation strategy for a data center at risk of flooding?

Building the data center in a non-flood zone

Implementing full disk encryption

Reducing the number of employees

Increasing the number of laptops

7.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which risk management strategy involves purchasing insurance?

Risk Rejection

Risk Transference

Risk Reduction

Risk Avoidance

Create a free account and access millions of resources

Create resources
Host any resource
Get auto-graded reports
or continue with
Microsoft
Apple
Others
By signing up, you agree to our Terms of Service & Privacy Policy
Already have an account?