An organization performed a risk analysis and found a large number of assets with low-impact vulnerabilities. The NEXT action of the information security manager should be to:

Posted by: Pdfprep Category: CISM Tags: Isaca Certificaton, CISM exam questions, CISM practice exam Post Date: December 25, 2020

An organization performed a risk analysis and found a large number of assets with low-impact vulnerabilities. The NEXT action of the information security manager should be to:
A . determine appropriate countermeasures.
B . transfer the risk to a third party.
C . report to management.
D . quantify the aggregated risk.

Answer: D

An organization performed a risk analysis and found a large number of assets with low-impact vulnerabilities. The NEXT action of the information security manager should be to:

Author

Leave a Reply Cancel reply