From the course: Introduction to Pen Testing for Cybersecurity Professionals
Join today to access over 24,700 courses taught by industry experts.
Managing risk
From the course: Introduction to Pen Testing for Cybersecurity Professionals
Managing risk
- [Instructor] Pen testing is a proactive security assessment conducted with the goal of reducing overall risk. In an organization, managing risk is an important exercise. Potential issues are evaluated that could negatively impact the business. The goal is to reduce risk to protect the assets, which are tangible and intangible items that can be assigned a value. Tangible assets include anything you can touch, such as printers or computers. Intangible assets include trade secrets, databases, or company records. So how do we assess risk? Well, risk is a function of a threat exploiting a weakness or vulnerability according to a formula. Risk equals threats times vulnerabilities. Now, a couple key concepts when dealing with risk. Threats may exist, but if there is no vulnerability, there will be no risk. Correspondingly, if there's a vulnerability but no threat, there will be no risk. Risk include business disruption…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.