Question

What is the overall objective of an IT risk assessment? To assist IT management in establishing a budget for countermeasures To assist an organization in identifying risks and impacts To convince the executive management on the importance of an Intrusion Detection System (IDF) To determine which brand of firewall software to install on the CEO's laptop when traveling

Answer 1

The overall objective of an IT risk assessment is to assist an organization in identifying risks and impacts. The process includes discovering, correcting and preventing security problems.
The IT risk assessment document identifies threats, estimates risks and determines how to manage them.