Multiple Choice
In the past, the risk committee at Company A has shown an aversion to even minimal amounts of risk acceptance. A security engineer is preparing recommendations regarding the risk of a proposed introducing legacy ICS equipment. The project will introduce a minor vulnerability into the enterprise. This vulnerability does not significantly expose the enterprise to risk and would be expensive against. Which of the following strategies should the engineer recommended be approved FIRST?
A) Avoid
B) Mitigate
C) Transfer
D) Accept
Correct Answer:
Verified
Correct Answer:
Verified
Q330: A security engineer is assessing the controls
Q331: Given the following output from a security
Q332: A project manager is working with a
Q333: Following a security assessment, the Chief Information
Q334: A company monitors the performance of all
Q336: A user workstation was infected with a
Q337: After investigating virus outbreaks that have cost
Q338: An organization is implementing a virtualized thin-client
Q339: A Chief Information Security Officer (CISO) recently
Q340: Users have been reporting unusual automated phone