Exam Essentials
Know the three categories of control types. The three types of controls that can be administered are Technical, Management, and Operational.
Know how to calculate risk. Risk can be calculated either qualitatively (subjective) or quantitatively (objective). Quantitative calculations assign dollar amounts, and the basic formula is SLE × ARO = ALE where SLE is the single loss expectancy, ARO is the annualized rate of occurrence, and ALE is the annual loss expectancy.
Know the five different approaches to risk. The five risk strategies are avoidance (don’t engage in that activity), transference (think insurance), mitigation (take steps to reduce the risk), deterrence (warn of harm to others if they affect you), and acceptance (be ...
Get CompTIA® Security+™: Study Guide, Fifth Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
