nerdexam
(ISC)2

CAP · Question #68

Which of the following are the goals of risk management? Each correct answer represents a complete solution. Choose three.

The correct answer is A. Finding an economic balance between the impact of the risk and the cost of the B. Identifying the risk C. Assessing the impact of potential threats. The three core goals of risk management are: Identifying the risk (B) - you cannot manage what you have not identified; Assessing the impact of potential threats (C) - understanding likelihood and severity guides prioritization; and Finding an economic balance between the impact

Security and Privacy Governance, Risk Management, and Compliance Program

Question

Which of the following are the goals of risk management? Each correct answer represents a complete solution. Choose three.

Options

  • AFinding an economic balance between the impact of the risk and the cost of the
  • BIdentifying the risk
  • CAssessing the impact of potential threats
  • DIdentifying the accused

How the community answered

(48 responses)
  • A
    90% (43)
  • D
    10% (5)

Explanation

The three core goals of risk management are: Identifying the risk (B) - you cannot manage what you have not identified; Assessing the impact of potential threats (C) - understanding likelihood and severity guides prioritization; and Finding an economic balance between the impact of the risk and the cost of the countermeasure (A) - safeguards should not cost more than the asset or loss they protect. Option D - 'Identifying the accused' - is a forensic or legal investigative concept, not a goal of risk management. Risk management is proactive and focuses on threats and vulnerabilities, not attributing blame after an incident.

Topics

#Risk Management Goals#Risk Identification#Risk Assessment#Risk Response

Community Discussion

No community discussion yet for this question.

Full CAP Practice