Explain how risk management planning, and the execution of those plans, integrates with other organizational planning processes, such as strategic planning, ongoing operational management, continuity and disaster recovery planning, or asset management. Understand what risk is and apply this concept to the various organizational uses of information and information systems. Explain risk management, the basic risk management strategies, and their importance to the success and survival of organizations. Compare and contrast asset-based, vulnerability-based, process-based, and objective-based strategies, and what they offer to a variety of organizational information risk management situations. Compare and contrast vulnerabilities, threats, and exploits, and explain how these concepts vary across the spectrum of natural, accidental, and deliberate hazards. Compare and contrast risk identification and assessment, with other quality management or systems reliability disciplines such as failure modes and effects analysis. Assess the different categories of controls and how to identify, analyze, and plan risk mitigation controls.