nerdexam
(ISC)2

CISSP-ISSMP · Question #64

Which of the following are the major tasks of risk management? Each correct answer represents a complete solution. Choose two.

The correct answer is C. Risk control D. Risk identification. Risk management is fundamentally structured around two core tasks: Risk Identification (finding and cataloging threats, vulnerabilities, and potential impacts) and Risk Control (implementing countermeasures to reduce, transfer, accept, or avoid identified risks). 'Assuring the in

Security Leadership and Management

Question

Which of the following are the major tasks of risk management? Each correct answer represents a complete solution. Choose two.

Options

  • AAssuring the integrity of organizational data
  • BBuilding Risk free systems
  • CRisk control
  • DRisk identification

How the community answered

(28 responses)
  • A
    7% (2)
  • B
    4% (1)
  • C
    89% (25)

Explanation

Risk management is fundamentally structured around two core tasks: Risk Identification (finding and cataloging threats, vulnerabilities, and potential impacts) and Risk Control (implementing countermeasures to reduce, transfer, accept, or avoid identified risks). 'Assuring the integrity of organizational data' is a security objective, not a risk management task. 'Building risk-free systems' is impossible in practice and not a recognized risk management goal - the aim is risk reduction to acceptable levels, not elimination.

Topics

#Risk Management Process#Risk Identification#Risk Control#Security Management

Community Discussion

No community discussion yet for this question.

Full CISSP-ISSMP Practice