What is the primary purpose of Risk Management in the context of ISC2 CC - Certified in Cybersecurity?