What can be BEST defined as the examination of threat sources against system vulnerabilities to determine the
threats for a particular system in a particular operational environment?
A.
Risk management
B.
Risk analysis
C.
Threat analysis
D.
Due diligence
Explanation:
Threat analysis is defined as the examination of threat-sources against system vulnerabilities to determine the
threats for a particular system in a particular operational environment.
Incorrect Answers:
A: Risk management is defined the process of identifying and assessing risk, reducing it to an acceptable level,
and implementing the right mechanisms to maintain that level.
B: Risk analysis is defined as a method of identifying risks and assessing the possible damage that could be
caused in order to justify security safeguards.
D: Due diligence is the act of gathering the necessary information so the best decision-making activities can
take place.