CCISO Certified Chief Information Security Officer All-in-One Exam Guide
EXAM TIP CCISO candidates should be familiar with quantitative and qualitative risk management and be able to identify which method is being used given a scenario.
Jordan Genung • CCISO Certified Chief Information Security Officer All-in-One Exam Guide
Single Loss Expectancy (SLE) is the potential value of a loss for a single threat event. Note that the event can apply to a single asset or a group of assets. The formula is AV × EF = SLE
Jordan Genung • CCISO Certified Chief Information Security Officer All-in-One Exam Guide
Information security risk management programs generally have three components: Approach, Process, and Method.
Jordan Genung • CCISO Certified Chief Information Security Officer All-in-One Exam Guide
Risk management is the process of identifying and assessing risk, reducing it to an acceptable level, and implementing the right controls to maintain that level.
Jordan Genung • CCISO Certified Chief Information Security Officer All-in-One Exam Guide
Decision tree analysis
Jordan Genung • CCISO Certified Chief Information Security Officer All-in-One Exam Guide
Security areas of focus