Domain 2 Risk Analysis, Evaluation and Assessment - Risk Scenarios

These flashcards cover key concepts related to risk assessment and management, focusing on the terminology and processes involved.

Risk Scenario

A hypothetical situation used to assess potential risks and prepare proactive responses.

Identifying the Risk

The first step in risk assessment, which involves recognizing and specifying risks in the environment.

Mitigation

Steps taken to reduce the severity or likelihood of potential risks.

Attacker Motivation

The intent behind an attack, which can be malicious, accidental, or due to competition.

Asset Exposure

The level of visibility or accessibility of an asset, which affects its vulnerability to attacks.

Generic Risk Scenarios

Broadly applicable risk scenarios that cover multiple threats rather than overly specialized ones.

Frequency Assessment

The process of estimating how often a particular risk might occur.

Threat Actor

Individuals or groups that pose a potential threat, which can be external or internal.

Controls Mitigation

Measures implemented to prevent or minimize the impact of identified risks.

Risk Ranking

Prioritization of risks based on their potential impact and likelihood to inform resource allocation.

Critical Asset

An essential resource that requires immediate attention and protection due to its importance to business operations.

Updates to Risk Scenarios

The ongoing process of revising risk scenarios to reflect current threats and capabilities of attackers.