Professional Documents
Culture Documents
Principles of Information Security, Fifth Edition: Risk Management
Principles of Information Security, Fifth Edition: Risk Management
Fifth Edition
Chapter 5
Risk Management
Learning Objectives
• Upon completion of this material, you should be
able to:
– Define risk management, risk identification, and risk
control
– Describe how risk is identified and assessed
– Describe the various risk mitigation strategy options
– Identify the categories that can be used to classify
controls