Domain 2 Risk Treatment:Risk Response Options

0.0(0)
studied byStudied by 0 people
0.0(0)
linked notesView linked note
full-widthCall Kai
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
GameKnowt Play
Card Sorting

1/18

flashcard set

Earn XP

Description and Tags

This set of flashcards covers key concepts, terms, and definitions related to risk management methods discussed in the lecture.

Study Analytics
Name
Mastery
Learn
Test
Matching
Spaced

No study sessions yet.

19 Terms

1
New cards

Risk Management

A process consisting of three major steps: asset valuation, risk analysis, and risk treatment.

2
New cards

Asset Valuation

The step in risk management where valuable assets are identified.

3
New cards

Risk Analysis

The step in risk management that involves identifying risks associated with assets.

4
New cards

Risk Treatment

The step in risk management that determines how to address identified risks.

5
New cards

Risk Avoidance

A method of risk treatment where the risky action is not taken to prevent risk exposure.

6
New cards

Risk Transfer

A method of risk treatment that involves transferring the financial risk to another party, often through insurance.

7
New cards

Accountability

Responsibility that cannot be delegated or outsourced, particularly regarding data protection.

8
New cards

Risk Mitigation

The implementation of controls aimed at reducing identified risks.

9
New cards

Residual Risk

The risk remaining after mitigating controls have been applied.

10
New cards

Risk Acceptance

A method of risk treatment where the asset owner acknowledges and accepts the risk.

11
New cards

Cost Benefit Analysis

A systematic approach to estimating the strengths and weaknesses of alternatives used to determine options that provide the best approach to achieve benefits while preserving savings.

12
New cards

User Acceptance

The willingness of users to adhere to new controls and processes, which may affect the effectiveness of those controls.

13
New cards

Mitigating Controls

Actions implemented to reduce risk exposure.

14
New cards

Insurance

A form of risk transfer where an organization purchases policies to cover potential data breaches or issues.

15
New cards

Directive Controls

Controls that dictate or instruct specific behaviors within an organization.

16
New cards

Preventative Controls

Controls that are designed to avert problems before they occur.

17
New cards

Detective Controls

Controls that are implemented to identify when problems occur.

18
New cards

Corrective Controls

Controls that are designed to fix an issue after it has occurred.

19
New cards

Decommissioning Costs

Costs associated with properly removing and disposing of controls once they are no longer needed.