Certificate of Cloud Auditing Knowledge (CCAK) — Question 192

Which of the following aspects of risk management involves identifying the potential reputational harm and/or financial harm when an incident occurs?

Answer options

• A. Mitigations
• B. Residual risk
• C. Likelihood
• D. Impact Analysis

Correct answer: D

Explanation

Impact Analysis is the process that evaluates the potential effects of an incident, including reputational and financial damage. The other options, such as Mitigations, refer to strategies to reduce risk, Residual risk pertains to the remaining risk after mitigation, and Likelihood assesses the probability of an event occurring, rather than its consequences.