The LeGrand Vulnerability-Oriented Risk Management method is based on vulnerability analysis and consists of four principle steps. Which of the following processes does the risk assessment step include? Each correct answer represents a part of the solution. Choose all that apply. 

Answer options:

A. Remediation of a particular vulnerability
B. Cost-benefit examination of countermeasures
C. Identification of vulnerabilities
D. Assessment of attacks

countermeasures, and assessment of attacks. Answer: A is incorrect. This process is included in the vulnerability management.

Risk assessment includes identification of vulnerabilities, assessment of losses caused by threats materialized, cost-benefit examination of