When conducting a risk management analysis, each of the following factors is used to calculate expected loss: 1) probability of an attack, 2) probability of attack being successful and 3) probability of an attack remaining undetected.

Question

Quizplus · Accepted Answer

Risk management analysis typically calculates expected loss using the probability of an attack and the potential impact or loss if the attack is successful. The probability of an attack being successful is considered, but the probability of an attack remaining undetected is not a standard factor in calculating expected loss.

When Conducting a Risk Management Analysis, Each of the Following