Q: 20
The first step in the "general security risk assessment flow chart" is to:
Options
Discussion
A . Seen this step consistently as the starting point in official manuals and practice tests. You can't move forward with a risk assessment if you don't know which assets are being considered. If anyone found a resource that orders it differently, let me know.
Its A, always start by identifying assets. You need to know what you're protecting before you can even talk about threats or costs. Pretty standard risk assessment logic. Open if anyone's seen an exception but that's how the flow charts go.
Not B, A. A lot of folks mix up loss events and assets, but the chart always starts with identifying assets.
A or maybe B. First step should be to list what you're protecting, so A makes sense. Seen this order in some official guides and practice tests. Not 100% sure, so open to corrections here.
A identify assets
Pretty sure that's right since you can't really assess risks or threats if you don't know what you're protecting. You always start with assets in any risk assessment flow.
Pretty sure that's right since you can't really assess risks or threats if you don't know what you're protecting. You always start with assets in any risk assessment flow.
Be respectful. No spam.
