What is risk management? Why is the identification of risks, by listing assets and their vulnerabilities, so imp

What is risk management? Why is the identification of risks, by listing assets and their vulnerabilities, so important to the risk management process? Who is responsible for risk management in an organization? Which community of interest usually takes the lead in information security risk management? Why do networking components need more examination from an information security perspective than from a systems development perspective? What information attribute is often of great value for local networks that use static addressing? What’s the difference between an asset’s ability to generate revenue and its ability to generate profit? The minimum requirement for each question is 1 paragraph (at least 4 sentences). More is welcome if needed. notes if you take any thing from internet just put the references..