Summary
You learned that assets, threats, and vulnerabilities contribute to the risk factor for IT assets within an IT infrastructure. Determining how an organization approaches its risk and vulnerability assessment is best accomplished by first understanding how the organization makes business decisions. For organizations that require financial impact or return-on-investment calculations to assess the impact of risk on their IT infrastructure and IT assets, conducting a quantitative risk assessment is typical. For those organizations that do not have access to accurate asset management, IT asset inventories, maintenance and warranty contracts, and financial data, conducting a qualitative risk assessment based on different scenarios is typical. ...
Get Inside Network Security Assessment: Guarding Your IT Infrastructure now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
