ISC2 Certified Cloud Security Professional (CCSP) Practice Question
During a risk assessment for a multi-tenant IaaS migration, your team lists each threat-vulnerability pair, notes existing controls, and then assigns a High/Medium/Low value representing how probable it is that the threat will be successfully exploited. According to NIST SP 800-30, which element of risk are you rating with this High/Medium/Low value?
NIST SP 800-30 breaks risk into two fundamental factors: the likelihood that a given threat will exploit a vulnerability and the magnitude of the resulting impact. In the scenario, the team has already identified the threat, vulnerability, and existing controls; they are now estimating how probable it is that the threat will actually occur. That estimate maps directly to the likelihood component. Impact, residual risk, and risk tolerance are different concepts: impact measures consequences, residual risk is what remains after controls, and tolerance is management's appetite for risk.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is NIST SP 800-30?
Open an interactive chat with Bash
What is the difference between likelihood and magnitude in risk assessment?
Open an interactive chat with Bash
What is residual risk in a risk assessment?
Open an interactive chat with Bash
ISC2 Certified Cloud Security Professional (CCSP)
Cloud Platform & Infrastructure Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .