What is the first step in the risk management process specified by the ISO/IEC?
- Create a security policy.
- Conduct a risk assessment.
- Inventory and classify IT assets.
- Create a security governance model.
Explanation: There are 12 network security domains in the security framework specified by the ISO/IEC. The first task in this framework is to conduct a risk assessment.This assessment will enable an organization to quantify risks and threats.
Exam with this question: CCNA Security Chapter 1 Exam Answers
Please login or Register to submit your answer