From the course: CompTIA Security+ (SY0-601) Cert Prep: 10 Governance, Risk, and Compliance
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Risk types
From the course: CompTIA Security+ (SY0-601) Cert Prep: 10 Governance, Risk, and Compliance
Risk types
- [Instructor] As you prepare for the Security+ exam you should be familiar with some different ways of categorizing risks that CompTIA uses in the exam objectives. This specific language is unique to the Security+ exam objectives. But remember if it's in the objectives it's likely on the exam. So let's take a look. First, CompTIA divides risks into the categories of internal and external risk. Internal risks are those that arise from within the organization. For example, if the way that you process checks creates an opportunity for employees in the accounting department to commit fraud then that's an example of an internal risk. You can often address internal risks by adding internal controls. In the accounting example, adding two person control to the issuance of checks might reduce the risk of fraud. External risks are those where the threat originates outside of the organization. For example, the risk of an…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.