How is residual risk calculated?

Study for the EC-Council Certified Ethical Hacker (CEH) v13 Exam. Utilize flashcards and multiple-choice questions with helpful hints and detailed explanations. Excel in your exam preparation!

Multiple Choice

How is residual risk calculated?

Explanation:
Residual risk is what remains after safeguards are applied. Inherent risk represents the level of risk before controls, and the impact of risk controls shows how much risk those controls reduce it. So the remaining risk is the inherent risk minus the risk reduction achieved by the controls. For example, if the inherent risk is 70 on a chosen scale and the controls reduce risk by 25, the residual risk would be 45. This reflects the idea that controls diminish risk rather than add to it, and it prevents negative or illogical results that would come from adding risk or reversing the subtraction.

Residual risk is what remains after safeguards are applied. Inherent risk represents the level of risk before controls, and the impact of risk controls shows how much risk those controls reduce it. So the remaining risk is the inherent risk minus the risk reduction achieved by the controls.

For example, if the inherent risk is 70 on a chosen scale and the controls reduce risk by 25, the residual risk would be 45. This reflects the idea that controls diminish risk rather than add to it, and it prevents negative or illogical results that would come from adding risk or reversing the subtraction.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy