DiscoverCertified: The CISSP PrepcastEpisode 11: Risk Response and Risk Appetite
Episode 11: Risk Response and Risk Appetite

Episode 11: Risk Response and Risk Appetite

Update: 2025-06-22
Share

Description

Once a risk is identified and assessed, the next critical step is determining how to respond. In this episode, we examine the four primary risk response strategies: risk avoidance, risk mitigation, risk transference, and risk acceptance. We also clarify the concepts of risk appetite and risk tolerance, and how organizations use these to shape their security policies and control decisions. You'll learn how business objectives, regulatory pressure, and operational needs influence how much risk an organization is willing to take. Understanding these principles enables security professionals to align cybersecurity decisions with broader business goals.

Comments 
loading
In Channel
Episode 1: What Is the CISSP and Why It Matters

Episode 1: What Is the CISSP and Why It Matters

2025-06-2210:16

Episode 2: CISSP vs. Other Certifications: Which One’s Right for You?

Episode 2: CISSP vs. Other Certifications: Which One’s Right for You?

2025-06-2210:05

Episode 3: Career Impact of the CISSP: Roles, Salaries, Growth

Episode 3: Career Impact of the CISSP: Roles, Salaries, Growth

2025-06-2210:00

Episode 4: How to Study and Pass the CISSP Exam: Resources and Mindset

Episode 4: How to Study and Pass the CISSP Exam: Resources and Mindset

2025-06-2209:23

Episode 5: The CIA Triad: Confidentiality, Integrity, Availability

Episode 5: The CIA Triad: Confidentiality, Integrity, Availability

2025-06-2210:52

Episode 6: Security Governance Principles: Frameworks and Strategy

Episode 6: Security Governance Principles: Frameworks and Strategy

2025-06-2211:17

Episode 7: Compliance Requirements: Legal, Regulatory, Contractual

Episode 7: Compliance Requirements: Legal, Regulatory, Contractual

2025-06-2211:03

Episode 8: Organizational Roles and Responsibilities

Episode 8: Organizational Roles and Responsibilities

2025-06-2211:12

Episode 9: Professional Ethics and (ISC)² Code of Ethics

Episode 9: Professional Ethics and (ISC)² Code of Ethics

2025-06-2210:25

Episode 10: Risk Management Concepts: Threats, Vulnerabilities, Risk

Episode 10: Risk Management Concepts: Threats, Vulnerabilities, Risk

2025-06-2210:53

Episode 11: Risk Response and Risk Appetite

Episode 11: Risk Response and Risk Appetite

2025-06-2211:28

Episode 12: Business Continuity Planning (BCP) Fundamentals

Episode 12: Business Continuity Planning (BCP) Fundamentals

2025-06-2210:44

Episode 13: Disaster Recovery Planning (DRP) and Continuity of Operations

Episode 13: Disaster Recovery Planning (DRP) and Continuity of Operations

2025-06-2210:32

Episode 14: Security Policies, Standards, Procedures, and Guidelines

Episode 14: Security Policies, Standards, Procedures, and Guidelines

2025-06-2210:23

Episode 15: Personnel Security: Background Checks, Policies, Termination

Episode 15: Personnel Security: Background Checks, Policies, Termination

2025-06-2210:14

Episode 16: Security Awareness and Training Programs

Episode 16: Security Awareness and Training Programs

2025-06-2209:39

Episode 17: Third-Party Risk Management

Episode 17: Third-Party Risk Management

2025-06-2210:14

Episode 18: Supply Chain Risk and Due Diligence

Episode 18: Supply Chain Risk and Due Diligence

2025-06-2211:10

Episode 19: Privacy Principles and Data Protection (GDPR, CCPA)

Episode 19: Privacy Principles and Data Protection (GDPR, CCPA)

2025-06-2209:57

Episode 20: Intellectual Property and Licensing Laws

Episode 20: Intellectual Property and Licensing Laws

2025-06-2210:37

loading
Google Play
Download from Google Play
Castbox
Download from App Store
usUnited States
00:00
00:00
x

0.5x

0.8x

1.0x

1.25x

1.5x

2.0x

3.0x

Sleep Timer

Off

End of Episode

5 Minutes

10 Minutes

15 Minutes

30 Minutes

45 Minutes

60 Minutes

120 Minutes

Episode 11: Risk Response and Risk Appetite

Episode 11: Risk Response and Risk Appetite

Dr. Jason Edwards