Multiple Choice
An infrastructure team is at the end of a procurement process and has selected a vendor. As part of the final negotiations, there are a number of outstanding issues, including: 1. Indemnity clauses have identified the maximum liability 2. The data will be hosted and managed outside of the company's geographical location The number of users accessing the system will be small, and no sensitive data will be hosted in the solution. As the security consultant on the project, which of the following should the project's security consultant recommend as the NEXT step?
A) Develop a security exemption, as it does not meet the security policies
B) Mitigate the risk by asking the vendor to accept the in-country privacy principles
C) Require the solution owner to accept the identified risks and consequences
D) Review the entire procurement process to determine the lessons learned
Correct Answer:
Verified
Correct Answer:
Verified
Q134: Security policies that are in place at
Q135: During the decommissioning phase of a hardware
Q136: An engineer needs to provide access to
Q137: A Chief Information Security Officer (CISO) implemented
Q138: Within the past six months, a company
Q140: A recent penetration test identified that a
Q141: After an employee was terminated, the company
Q142: An organization is evaluating options related to
Q143: A government entity is developing requirements for
Q144: An administrator has noticed mobile devices from