Back to Domain 1 Practice
Domain 1: Security and Risk Management
Practice questions covering security concepts, risk management, compliance, and more.
Question 1 of 10
Medium
Progress: 0%
Which risk response strategy involves accepting the potential impact of a risk without taking any action to address it?
Quick Tips: Security and Risk Management
Risk Management Process: Identification, Assessment, Response (avoid, mitigate, transfer, accept), and Monitoring.
ISC² Code of Ethics: (1) Protect society, commonwealth, and infrastructure; (2) Act honorably, honestly, justly, responsibly, and legally; (3) Provide diligent and competent service to principals; (4) Advance and protect the profession.
Key Regulations: GDPR, HIPAA, SOX, GLBA, FISMA, PCI DSS. Know their scope and primary requirements.
Risk Analysis Methods: Qualitative (subjective rankings) vs. Quantitative (monetary values, ALE, SLE, ARO).