Multiple Choice
An infrastructure team is at the end of a procurement process and has selected a vendor. As part of the final negotiation, there are a number of outstanding issues, including: 1. Indemnity clauses have identified the maximum liability. 2. The data will be hosted and managed outside of the company's geographical location. The number of users accessing the system will be small, and no sensitive data will be hosted in the solution. As the security consultant of the project, which of the following should the project's security consultant recommend as the NEXT step?
A) Develop a security exemption, as it does not meet the security policies.
B) Require the solution owner to accept the identified risks and consequences.
C) Mitigate the risk by asking the vendor to accept the in-country privacy principles.
D) Review the procurement process to determine the lessons learned.
Correct Answer:
Verified
Correct Answer:
Verified
Q432: A security analyst who is concerned about
Q433: During the decommissioning phase of a hardware
Q434: A product owner is reviewing the output
Q435: A company is moving all of its
Q436: Which of the following is an external
Q438: An organization has established the following controls
Q439: The marketing department has developed a new
Q440: Given the following information about a company's
Q441: A security architect has designated that a
Q442: Which of the following BEST represents a