An internal credit card processing system will expose the business to additional compliance requirements.
Which of the following is the BEST risk mitigation strategy?
A . Transfer the risks to another internal department, who have more resources to accept the risk.
B . Accept the risks and log acceptance in the risk register. Once the risks have been accepted close them out.
C . Transfer the initial risks by outsourcing payment processing to a third party service provider.
D . Mitigate the risks by hiring additional IT staff with the appropriate experience and certifications.
Answer: C