Domain 2: Information security risk assessment Course
3 hours, 26 minutes
Course description
CISM Domain 2 covers information security risk assessment and dives into such topics such as the risk and threat landscape; risk identification and risk analysis; threat vulnerability and control deficiencies; risk assessment and evaluation concepts; risk response, reporting and communication; and business impact analysis.
Syllabus
Domain 2: Information security risk assessment supplemental materials
File - 00:15:00
The supplemental materials for Domain 2 include documents with key terms, definitions, and other materials that will help students prepare for the ISACA CISM exam.
Domain 2: Information security risk assessment participant guide
File - 00:15:00
This participant guide includes the various slides that the instructor went over in the videos for Domain 2 so that participants can review the main ideas, as well as relevant charts, graphics, questions and activities.
Domain 2: Information security risk assessment course summary
Video - 00:02:00
A short summary of CISM Domain 2, reviewing the main areas of discussion in the preceding videos.
Risk monitoring, reporting and communication
Video - 00:22:00
This video describes the need to regularly monitor for risks, as well as create effective reports and communicate information gathered as part of an effective risk management program.
Information risk response
Video - 00:31:00
This video covers how to respond to risk and get an organization to its desired state of security based on the impacts of a specific risk to the organization and the legal and regulatory requirements under which the organization operates.
Risk assessment, evaluation and analysis
Video - 00:47:00
This video details processes, methods, and resources that are used to identify, evaluate, and analyze whether the organization is able to maintain risk at acceptable levels.
Vulnerability and control deficiency analysis
Video - 00:19:00
This video dives into how organizations must conduct regular vulnerability assessments and penetration tests to identify, validate and classify vulnerabilities, as well as how to implement security controls.
Risk and threat landscape
Video - 00:52:00
This video walks through an overview of the risk and threat landscape for organizations, discussing how organizations must balance the reduction of vulnerabilities to risk with the costs to contain them in the most effective way, discussing risk assessment and management, identification methods and techniques, and types of threats.
Introduction to CISM Domain 2: Information security risk assessment
Video - 00:03:00
The instructor provides a brief introduction to the ISACA CISM videowork and exam for Domain 2: Information security risk assessment, which is weighted at 20% of the exam.
Unlock 7 days of free training
- 1,400+ hands-on courses and labs
- Certification practice exams
- Skill assessments
Plans & pricing
Infosec Skills Personal
$299 / year
- 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
- 100s of hands-on labs in cloud-hosted cyber ranges
- Custom certification practice exams (e.g., CISSP, Security+)
- Skill assessments
- Infosec peer community support
Infosec Skills Teams
$799 per license / year
- Team administration and reporting
- Dedicated client success manager
-
Single sign-on (SSO)
Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
-
Integrations via API
Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
- 190+ role-guided learning paths and assessments (e.g., Incident Response)
- 100s of hands-on labs in cloud-hosted cyber ranges
- Create and assign custom learning paths
- Custom certification practice exams (e.g., CISSP, CISA)
- Optional upgrade: Guarantee team certification with live boot camps
Learn about scholarships and financing with
Award-winning training you can trust
