...Fundamentals of Information Systems and Security Chapter 4 Information Security and Business Drivers Project Management Body of Knowledge (PMBOK) A collection of the knowledge and best practices of the project management profession. Project Mangement Institute (PMI) A nonprofit international organization of project managers that promotes the field of project management. Risk Methodology A description of how you will manage overall risk. It includes the approach, required information, and techniques to address each risk. Risk Register A list of identified risks that results from the risk-identification process. Delphi method An information and opinon collection method that empoloys formal anonymous surveys in multiple rounds. Qualitative Risk Analysis A risk analysis method that uses mathematical formulas and numbers to assist in ranking risk severity. Risk Impact- High Very Likely to occur, Average Neither frequent nor rare, Low not very likely to occur, Critical- High Impact requires immediate response, Major- medium impact requires prioritized response, Minor- negligible impact requires an analysis to assess if a response is needed. Quantitative Risk Analysis uses mathematical formulas and numbers to rank risk severity. Exposure Factor (EF) The proportion of value of a particular asset is likely to be destroyed by a given risk, expressed as a percentage. Single loss expectancy (SLE) the loss for a single threat occurence. Annual Rate of occurance(ARO) The estimated...
Words: 784 - Pages: 4