1. Asset: Anything of value to the company
2.Vulnerability: A weakness;the absence of a safeguard.
3.Threat: Something that could pose loss to all or port of an asset.
4.Threat agent: What carries out the attack
5.Exploit: An instance of compromise.
6.Risk: The probability of a threat materializing.
7.Controls: Physical,Administrative and Technical protectors.
+ Safeguards
+ Countermeasure
8.Total risks: The risk that exists before any control is implemented.
9.Residual risk: Leftover risk after applying a control.
10.Secondary Risk: When one risk response triggers another risk event.
0 Comments