Practice free →
HomeBCA Cyber SecuritycybersecurityCybersecurity Fundamentals › Risk is commonly expressed as a function of

Risk is commonly expressed as a function of

Aspeed × latency
Bbandwidth × packets
Cusers × sessions
Dthreat × vuln × impact
Answer & Solution
Correct answer: D. threat × vuln × impact
1. In cybersecurity risk management (NIST SP 800-30): RISK = f(THREAT, VULNERABILITY, IMPACT). 2. THREAT: a potential source of attack (hacker, insider, malware). 3. VULNERABILITY: a weakness in the system the threat can exploit. 4. IMPACT: the harm to the organisation if exploited (financial, reputational, operational). 5. Mitigations target each axis: threat intelligence reduces threat exposure, patching reduces vulnerabilities, segmentation limits impact. _Source: NIST CSF v1.1, §3.4 (Self-Assessing Cybersecurity Risk with the Framework) + NIST SP 800-30 reference._
Solve this in the app — BCA Cyber Security practice & 24k+ MCQs →
Related questions