A newly joined network administrator wants to assess the organization against possible risk. He notices the organization doesn't have a________identified which helps measure how risky an activity is.

A newly joined network administrator wants to assess the organization against possible risk. He notices the organization doesn’t have a________identified which helps measure how risky an activity is.

exams 312-38 V2 312-38 exam 0 Comments

A newly joined network administrator wants to assess the organization against possible risk. He notices the organization doesn’t have a________identified which helps measure how risky an activity is.
A . Risk Severity
B . Risk Matrix
C . Key Risk Indicator
D . Risk levels

Answer: B

Explanation:

A Risk Matrix is a tool used to define and prioritize risks. It helps in assessing the likelihood of an event occurring and the impact it would have on the organization, thus measuring how risky an activity is. By not having a Risk Matrix, the network administrator lacks a structured approach to identify, assess, and prioritize risks, which is crucial for effective risk management.

Reference: The Certified Network Defender (CND) program by EC-Council includes the use of a Risk Matrix as part of its approach to network security, which is essential for identifying and mitigating risks within an organization12. The CND curriculum covers the importance of risk assessment and the tools used for this purpose, including the Risk Matrix3.