Natalie is performing a risk assessment. She has been given the list of assets and owners of each asset. Harry is developing the list of Exposure Factors for each identified threat that is realized. What does Natalie need to ask the asset owners in order to derive the Single Loss Expectancy? A. The asset values using relative values on an ordinal scale. B. The value of the asset in monetary units. C. The replacement cost of each asset, that is how much it would cost to replace. D. The business value of each asset, that is how much it contributes to the revenues or saves in business costs.

CISSP Certification 2021 practice questions.
Source: https://thorteaches.com/ Free CISSP practice exam questions for the 2021 CISSP exam version.

ANSWER

The right answer is B.

 

 The Single Loss Expectancy is the Exposure Factor (EF) that Harry is providing, multiplied by the Asset Value (AV), which Natalie should obtain from the Asset Owners. The AV should be expressed in monetary units, such as dollars or yen, so that the SLE and Annual Loss Expectancy (ALE) can be expressed in the monetary units, facilitating the cost/ benefit justification (CBJ) for new controls. It is much harder to complete the CBJ if the Asset Value is expressed on an ordinal scale. The AV includes both the replacement cost and the business value.

show less

Complete-for-widget
Start learning today

CISSP: All videos and practice questions from ThorTeaches

What our students are saying:

Anthony Jones
Anthony JonesWCDC Site Supervisor Bunzl Safety
Read More
A friend of mine first recommended Thor’s CISSP video series on Udemy and I was glad that he did! The course content was fantastic and to the point, and the real-world examples it provides helped me synthesize and apply the information. Also, a special shout out to the essential information elephants! (You’ll know what I mean). This resource was by far my favorite video series that I utilized in my successful studying for and passing of the CISSP exam in May 2020. Thank you for the fantastic content!
Danny Tolnay
Danny TolnayInfosec Analyst  Hedge Fund
Read More
Thor’s commitment to his students really comes through in his videos. He has a talent for keeping it to the essentials, and the little jokes that are peppered in every now and again help keep it feeling light and fresh. I am so glad that I found his material for my CISSP studies, he is definitely a big reason why I passed. Thanks Thor!
Sven De Preter
Sven De PreterSenior Network & System Administrator NV Antwerps Sportpaleis
Read More
Thor’s bootcamp is a great way to recapitulate all the content provided in the CISSP CBK. It’s clear, concise, structured and affordable. Definitely a great tool that helps in preparing for the exam. Thanks Thor
Peter Peterson
Peter PetersonCyber Risk Management New York State Chief Information Security Office
Read More
I am not sure what else there is to say that has not been said about Thor. You can tell he has a passion for teaching and really does care about his students. His videos are short and to the point which is wonderful for courses like CISSP which has such a large scope it makes it frustrating at times. Thor’s material is a breath of fresh air, and I can say without them I may not have passed. Thank you, Thor!
Previous
Next