Many security and compliance projects begin with a simple idea: assess the organization’s
risk, vulnerabilities, and breaches. Implementing an IT security risk assessment is critical to
the overall security posture of any organization. An effective security risk assessment can
prevent breaches and reduce the impact of realized breaches.
What is the formula to calculate risk?
A.
Risk = Budget x Time
B.
Risk = Goodwill x Reputation
C.
Risk = Loss x Exposure factor
D.
Risk = Threats x Attacks
“C” ECSAv8 pg. 17
C is the correct answer.
Risk = Impact x Possibility