CISSP - Risk Management in Practice Controls and Frameworks
Watch on YouTube CISSP Domain 1 risk management in practice: countermeasure cost-benefit analysis, the 5 control types (preventive, detective, corrective, compensating, deterrent), NIST SP 800-53A control assessments, continuous monitoring with KRIs and KPIs, risk maturity models, and all 5 major risk frameworks (NIST RMF, ISO 31000, FAIR, OCTAVE, CRAMM). Watch the next video: CISSP 1.11 - Security Governance.
▶ Watch next: cissp_1_11 https://www.youtube.com/watch?v=Inz1GgWgg5M
Chapters
- 0:00 When Controls Cost More Than the Risk
- 2:17 Cost-Benefit Analysis for Controls
- 4:28 The Five Control Types
- 6:41 Control Assessments: Security and Privacy
- 9:00 Monitoring, Measurement, and Reporting
- 11:24 Continuous Improvement and Risk Maturity
- 13:44 Risk Frameworks: NIST RMF, ISO 31000, FAIR
- 16:27 OCTAVE, CRAMM, and Choosing Your Framework
- 19:19 Quiz Time
CISSP Domain 1 risk management in practice: countermeasure cost-benefit analysis, the 5 control types (preventive, detective, corrective, compensating, deterrent), NIST SP 800-53A control assessments, continuous monitoring with KRIs and...
Key Topics
- When Controls Cost More Than the Risk
- Cost-Benefit Analysis for Controls
- The Five Control Types
- Control Assessments: Security and Privacy
- Monitoring, Measurement, and Reporting
- Continuous Improvement and Risk Maturity
- Risk Frameworks: NIST RMF, ISO 31000, FAIR
- OCTAVE, CRAMM, and Choosing Your Framework