
DSM1244(5) ESRM LIFECYCLE
Presentation
•
Social Studies
•
Professional Development
•
Practice Problem
•
Medium
Nur Fatima Aisya Jamil
Used 15+ times
FREE Resource
23 Slides • 43 Questions
1
2
Reorder
Reorder the following ESRM cycle
identify assets
identify risks
mitigate risks
improve
3
4
5
6
Multiple Choice
According to ISO, which is the most valued asset?
physical
human
information
reputation
7
Multiple Choice
Which best defines asset?
anything with tangible and intangible value
potential exposure and impact of risk
incident monitoring and response
security convergence
8
Reorder
Reorder the following asset identification and prioritisation.
Find all assets
Identify asset owner
Find stakeholders involved
Understand impact and asset's importance
9
Multiple Choice
The first step in the ESRM cycle is to identify assets.
True
False
10
Multiple Choice
Risk managers must be casual in asset discovery and investigation.
True
False
11
Multiple Choice
Risk managers cannot understand risks before understanding the assets that need protection.
True
False
12
Multiple Choice
Relationships built in company does not help in asset investigation.
True
False
13
Multiple Choice
An asset can only be owned by one person.
True
False
14
Multiple Choice
Stakeholders does not mean asset owner.
True
False
15
Multiple Choice
A building is a physical asset.
True
False
16
Multiple Choice
If an asset is compromised, the impact will cascade to business operations because assets are interdependent.
True
False
17
18
Categorize
Human
Physical
Environmental
Information
Brand
Reputation
Organize these assets into the right categories
19
Categorize
Brand
Contract
Customer
Intellectual property
Technology
Building
Cash
Equipment
Vehicles
Land
Organize these assets into the right categories
20
21
Multiple Choice
All types of assets are equally important to all departments due to same exposure and impact.
True
False
22
Multiple Choice
Which does not refer to assets identification?
asset discovery
continual review
relationships with strategic partners
casual identification
23
24
Multiple Choice
Tangible assets are valued quantitatively.
True
False
25
Multiple Choice
Failure to deliver replacement equipment on time disrupts business operations.
True
False
26
Match
Match the following tangible asset valuation
based on purchase price
based on market price
difficulty in replacement
Cost method
Market value method
Complex tangible asset valuation
Cost method
Market value method
Complex tangible asset valuation
27
28
Multiple Choice
Valuing tangible assets are harder than intangible assets.
True
False
29
Multiple Choice
Intangible asset valuation is through economic substitution.
True
False
30
Multiple Choice
The outcome of the asset valuation process is a figure.
True
False
31
Multiple Choice
Which is not considered in valuing intangible assets?
Asset life
Stakeholder identification
influencing business function
Listed in financial reports
32
Match
Match the following intangible asset valuation
market price of similar asset
future income value
compiled cost such as development hours
Market method
Income method
Cost method
Market method
Income method
Cost method
33
34
35
36
Multiple Choice
Which is not a risk prioritisation conflict?
Different risk tolerance level depending on risk owner
Risk owners have control over risk decision
Person with no authority accept risk
Personnel having legitimacy in risk
37
Multiple Choice
Which does NOT refer to risk identification?
most impact
no impact
urgent mitigation
within risk tolerance
38
Multiple Choice
Which does NOT refer to risk identification investigation?
security incident history
asset owner's concern
risk registers
conflicts in risk prioritisation
39
Multiple Choice
Risk assessment is only limited to security department.
True
False
40
Open Ended
Define risk triangle.
41
Multiple Choice
Some risk assessments are simple and straightforward.
True
False
42
Multiple Choice
All risks are visible and obvious.
True
False
43
44
45
46
Multiple Choice
Which is NOT a risk mitigation conflict?
Owners cutting security implementation
Different stakeholder opinions
Stakeholders understanding risk
Stakeholders deciding without authority
47
Multiple Choice
Which does NOT refer to risk mitigation?
risk treatment
identify risk
take actions against risk
lowering exposure and impact
48
49
Multiple Choice
Which is NOT a risk mitigation plan?
daily business operations
use locks and keys
install network firewalls
maintain access control
50
Multiple Choice
Only asset owner and risk stakeholder has final decision on treating security risk.
True
False
51
Multiple Choice
Conflicts are always avoidable.
True
False
52
53
Multiple Choice
Which does NOT refer to risk treatement?
risk avoidance
worsen the risk
remove risk source
changing likelihood of risk
54
55
Match
Match the following risk treatement options
MARA invests in small enterprises knowing they have high risk.
Operating store in high crime area.
Purchasing fire accident insurance.
EPF PJ building is is water resistant.
accept risk
stop risk
transfer risk
mitigate impact
accept risk
stop risk
transfer risk
mitigate impact
56
57
58
59
Match
Match the following incident response process concepts
from harm incident
from risk identification
unforeseen threat in identification
from previous risk tolerance
reactive response
proactive response
previously unknown risk
residual risk
reactive response
proactive response
previously unknown risk
residual risk
60
61
Match
Match the following root cause analysis concept
analyse reactive proactive incident
scanning environment for threats
explaining factors accident
reactive investigation
proactive investigation
incident investigation
reactive investigation
proactive investigation
incident investigation
62
Multiple Choice
Which does NOT refer to root cause analysis?
understanding risk
determine residual risk
determine security risk
risk mitigation
63
64
Multiple Choice
Which does not refer to root cause analysis?
follow up questions
prevention actions
uncovering residual risk
asset identification
65
66
Multiple Choice
Which does NOT refer to ongoing risk assessment?
asset
uncertainty
threat
impact
Show answer
Auto Play
Slide 1 / 66
SLIDE
Similar Resources on Wayground
61 questions
Lesson 15 and 16 Quizziz
Presentation
•
KG - University
62 questions
Test
Presentation
•
KG - University
63 questions
Linear Equations Make-up
Presentation
•
KG - University
61 questions
MADAM MAZIAH OB CLASS
Presentation
•
University
55 questions
US 30605
Presentation
•
Professional Development
60 questions
MSK
Presentation
•
Professional Development
62 questions
WEX - Interviewing
Presentation
•
KG - University
58 questions
Tooth Anatomy Part 1
Presentation
•
Professional Development
Popular Resources on Wayground
10 questions
HCS SCI 03 Summer School Assessment 1
Quiz
•
3rd Grade
15 questions
HCS SCI 05 Summer School Assessment 1 Review
Quiz
•
5th Grade
22 questions
Day 9 Equations and Inequalities Review
Quiz
•
9th Grade
10 questions
Writing and Identifying Ratios Practice
Quiz
•
5th - 6th Grade
7 questions
PYRAMID PERSPECTIVES part 1
Presentation
•
9th - 12th Grade
12 questions
Understanding the Fourth of July
Quiz
•
9th Grade
15 questions
Soccer World Cup Quiz Questions
Quiz
•
7th Grade