[Cisspstudy] Simple but interesting CISSP Question

[Carrie.Arnold at alltel.com]

 It is never possible to reduce all risk.

________________________________
From: cisspstudy-bounces at cccure.org [mailto:cisspstudy-bounces at cccure.org] On Behalf Of Heidar heidarinia
Sent: Friday, March 06, 2009 12:19 PM
To: prakash2757 at yahoo.com; The CISSP Study Mailing list
Subject: Re: [Cisspstudy] Simple but interesting CISSP Question


A: It is very expensive or sometimes impossible
C: Vulnerability should be discovered or detected and no calculation or multiplied by threats
D : We don't ranked risks by likelihood we can ranked risk by calculation of the lost

Choose : B

________________________________
From: Prakash <prakash2757 at yahoo.com>
To: cisspstudy at cccure.org
Sent: Friday, March 6, 2009 10:28:21 AM
Subject: [Cisspstudy] Simple but interesting CISSP Question

Hello All,

I came across this Simple but interesting CISSP Question

Q: What is meant by the term "risk mitigation" ?

A Elimination of risk.
B Reduction of risk to an acceptable level.
C Calculating vulnerabilities multiplied by threats.
D Ranking risks in order of likelihood.


Do give your answer & opinion






The information contained in this message and any attachment may be
proprietary, confidential, and privileged or subject to the work
product doctrine and thus protected from disclosure.  If the reader
of this message is not the intended recipient, or an employee or
agent responsible for delivering this message to the intended
recipient, you are hereby notified that any dissemination,
distribution or copying of this communication is strictly prohibited.
If you have received this communication in error, please notify me
immediately by replying to this message and deleting it and all
copies and backups thereof.  Thank you.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20090306/fb444157/attachment.html>