CompTIA Security Plus Mock Test Q484

In order to secure additional budget, a security manager wants to quantify the financial impact of a one-time compromise. Which of the following is MOST important to the security manager?

A. Impact

Correct Answer: B
Section: Compliance and Operational Security

SLE is a monetary value, and it represents how much you expect to lose at any one time: the single loss expectancy. SLE can be divided into two components: AV (asset value) and the EF (exposure factor). Thus a one-time compromise would resort under the SLE for the security manager.

Incorrect Answers:
A: Impact is what is felt whenever any type of risk occurs.
C: ALE is the annual loss expectancy value. This is a monetary measure of how much loss you could expect in a year.
D: ARO is the statistical probability that a risk may be realized several times in a year expressed in a number.

Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, pp. 5, 8, 17