11.As part of information assurance risk management, discuss on how the health care professionals would ensure CIA of assets in order to protect from potential threats and vulnerabilities.

12.In the risk management process, what are the various ways the risk can be treated in order to ensure low impact on the probability of the threat event happened?

13.Risk exists no matter the size of organization. However, most of cyberattacks target small business. If the organization is small, how can it ensure information assurance?