Denise works as a Security Administrator for a community college. She is assessing the various risks to her network. Which of the following is not a category of risk assessment?

A.
Cost determination

B.
Risk determination

C.
Vulnerability assessment

D.
Likelihood assessment

Explanation:
Of course the cost of addressing a risk must be computed, but that is not part of risk assessment. Answer option D is incorrect. Likelihood assessment is a key part of risk assessment. How likely is a given threat? What threats are the most likely to your network?

Answer option B is incorrect. Determining what risks your network has, is one of the first steps in risk assessment.

Answer option C is incorrect. Assessing your networks vulnerabilities is a key part of risk assessment.

Answer option C is incorrect. Assessing your networks vulnerabilities is a key part of risk assessment.