Risk is a function of threat. In order words, you measure likeliness/probability of threat getting exploited via calculating risk. This done in order to prioritize threats to an organization.
If any of the is 0 on right hand side, you won't have risk.Risk = Vulnerability * Threat * Asset
On Mon, Jun 3, 2013 at 9:30 PM, <[hidden email]> wrote:
Send CISSPstudy mailing list submissions to
You can find the list archive at:
CISSPstudy mailing list
To UNSUBSCRIBE, SUBSCRIBE, or MANAGE your accout visit the link below:
|Free forum by Nabble||Edit this page|