From the course: CompTIA CySA+ (CS0-002) Cert Prep: 7 Compliance and Assessment

Unlock the full course today

Join today to access over 22,400 courses taught by industry experts or purchase this course individually.

Risk assessment

Risk assessment

- [Instructor] Risks are everywhere in the world of cybersecurity. From hackers and malware to lost devices and missing security patches there's a lot on the plate of information security professionals. Of course addressing each one of these risks takes both time and money in order to spend their precious resources where will they have the greatest security affect. That's where risk assessment comes into play. Risk assessment is the process of identifying and triaging the risks facing an organization based upon the probability of their occurrence and the expected magnitude of their impact on the organization. First, we need a common language. In everyday life people often use the terms threat, risk and vulnerability interchangeably, but these are actually three very different concepts. A threat is some external force that jeopardizes the security of your information and systems. Threats might be naturally occurring…

Contents