From the course: ISC2 Certified Cloud Security Professional (CCSP) Cert Prep
Join today to access over 24,900 courses taught by industry experts.
Enterprise risk management, part 2
From the course: ISC2 Certified Cloud Security Professional (CCSP) Cert Prep
Enterprise risk management, part 2
- [Instructor] Welcome to part two of this lesson on enterprise risk management. In this lesson, we have four topics. The first is risk treatment. We'll then cover risk frameworks, risk metrics, and risk assessment. Starting with risk treatment, this is the approach that we take to modifying and managing the risks identified within an organization. By first assessing the likelihood and impact of potential risks, organizations can prioritize the treatment based on the severity and probability of occurrence. The four main strategies for risk treatment include avoiding the risk by abstaining from certain activities, transferring the risk through mechanisms like insurance, mitigating the risk by implementing controls to reduce likelihood or impact, and finally, accepting the risk when it falls within the organization's tolerance. The choice between these strategies often involves a mix and is tailored to each specific risk. The balancing act that we play here is achieving an appropriate…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
-
-
-
(Locked)
Domain 6 overview2m 4s
-
(Locked)
Cloud legal requirements5m 45s
-
Legal frameworks and forensics12m 5s
-
(Locked)
Privacy in the cloud, part 15m 32s
-
(Locked)
Privacy in the cloud, part 25m 59s
-
(Locked)
Cloud auditing7m 48s
-
(Locked)
Audit analysis8m 17s
-
(Locked)
Distributed infrastructure and compliance7m 50s
-
(Locked)
Enterprise risk management, part 16m 37s
-
(Locked)
Enterprise risk management, part 27m 1s
-
(Locked)
Outsourcing and cloud contracts6m 5s
-
(Locked)