Busy. Please wait.
Log in with Clever

show password
Forgot Password?

Don't have an account?  Sign up 
Sign up using Clever

Username is available taken
show password

Make sure to remember your password. If you forget it there is no way for StudyStack to send you a reset link. You would need to create a new account.
Your email address is only used to allow you to reset your password. See our Privacy Policy and Terms of Service.

Already a StudyStack user? Log In

Reset Password
Enter the associated with your account, and we'll email you a link to reset your password.
Didn't know it?
click below
Knew it?
click below
Don't know
Remaining cards (0)
Embed Code - If you would like this activity on your web page, copy the script below and paste it into your web page.

  Normal Size     Small Size show me how

Security + CompTIA

Domain 5: Risk Management

SLA Service Level Agreement
BPA Business Partner Agreement
MOU Memorandum of understanding (not signed
ISA Interconnection agreement - defines security controls especially when US fed Government are connecting to each other
SLA, BPA, MOU & ISA are types of these interoperability agreements - help mitigate risk when dealing with third parties
Users that are responsible for creating or managing security policies Executive users, data owners and system owners
RTO Recovery Time Objective, target time you set for the recovery of your IT & Business activities after diaster
MTBF Mean Time Between Failure average time before a product requires a repair
MTTR Mean Time to Repair - average time it takes for a repair to take place, measured in hours
MTTF Mean tim To Failure - often referred to as "uptime" "time a system is online between outages or failures
Privacy Threshold Assessment determines whether a system can contain personal information
Privacy Impact Assessment needed for any organization that collects, uses, stores or processes such information
Risk Assessment function of threat vulnerability and impact
Risk = (equation) Threat x Vulnerability x Impact
Risk Identification includes asset identification, risk assessment, threat identification, classification and identification of vulnerabilities
ALE Annualized Loss Expectancy
ALE Equation SLE X ARO (Single Loss Expectancy X Annual Rate of Occurrence)
Change Management discipline that guides how we prepare, equip, and support individuals to successfully adopt change
Incident Response Plans include details surrounding incident categorization, prep roles, responsibilities, reporting requirements, escalation procedures, details on cyber incident response teams & training exercises
Incident Response Process 1. Preparation 2. Identification 3. Containment 4. Eradication 4. Recovery 5. Post- Incident
Order of volatility order in which evidence should be collected from most vulnerable to least volatile (ram & swap files being most volitale)
Chain of Custody ensures evidence is properly handled
DRP Disaster Recovery Plan - includes backup restoration, security recovery methods
Differential Backup Backup of all data altered since last full backup.
Incremental includes data changed since last incremental backup
Preventive Control computer login notification
Compensating controls used when a business or technological constraint exists and an alternate is effective in the current security threat landscape
Popular Standardized Tests sets




Use these flashcards to help memorize information. Look at the large card and try to recall what is on the other side. Then click the card to flip it. If you knew the answer, click the green Know box. Otherwise, click the red Don't know box.

When you've placed seven or more cards in the Don't know box, click "retry" to try those cards again.

If you've accidentally put the card in the wrong box, just click on the card to take it out of the box.

You can also use your keyboard to move the cards as follows:

If you are logged in to your account, this website will remember which cards you know and don't know so that they are in the same box the next time you log in.

When you need a break, try one of the other activities listed below the flashcards like Matching, Snowman, or Hungry Bug. Although it may feel like you're playing a game, your brain is still making more connections with the information to help you out.

To see how well you know the information, try the Quiz or Test activity.

Pass complete!
"Know" box contains:
Time elapsed:
restart all cards