This course covers managing information risk to an acceptable level based on risk appetite in order to meet organizational goals and objectives. You will also prepare for the CISM exam Domain 2.
Part 1 of Information Risk Management
start the course
recognize information asset classification
assign ownership of assets and risk
evaluate impacts of events on information assets
monitor internal and external risk factors
recognize information asset valuation methods
specify legal, regulatory, and organizational requirements
recognize information security threat sources
identify events needing risk reassessment
define information threats, vulnerabilities, and exposures
Practice: Information Risk Management
describe what is involved with information risk management
The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.