In this series of #CISSP #RISKManagment, we have covered the following content -:
Understand and apply risk management concepts
Identify threats and vulnerabilities
Risk assessment/analysis
Risk response
Countermeasure selection and implementation
Applicable t controls
Type of control = 3
Categories of control = 7
Security Control Assessment (SCA)
Monitoring and measurement
Asset valuation
Reporting
Continuous improvement
Risk frameworks

Understand and apply #threatmodeling concepts and methodologies
Threat modeling methodologies
Threat modeling concepts
#STRIDE
Establish and maintain a security awareness, education, and training program
Methods and techniques to present awareness and training
Periodic content reviews
Program effectiveness evaluation