In this course, you will learn to manage information risk to an acceptable level, based on risk appetite in order to meet organizational goals and objectives. This course helps prepare you for the CISM exam Domain 2.
Part 2 of Information Risk Management
start the course
identify risk assessment and analysis methodologies
prioritize risk scenarios and treatment
specify risk reporting requirements
apply risk treatment and response methodologies
compare control baselines and standards
analyze information security controls and methods
describe information security gap analysis techniques
define risk management for business and IT processes
specify compliance reporting requirements and processes
perform cost benefit analysis for risk assessment
Practice: Information Risk Management
describe information risk management
The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.