The Book Recommends Hard-Headed Thinking About Security ROI Analysis

Q72: _ audits are done by an organization

Q73: Having realistic goals for reducing vulnerabilities _.<br>A)

Q74: Once a company's resources are enumerated, the

Q75: When someone requests to take an action

Q76: Independence is best provided for IT security

Q78: The FTC can act against companies that

Q79: Policies should be written by _.<br>A) IT

Q80: Security professionals should minimize burdens on functional

Q81: _ specify the low-level detailed actions that

Q82: _ are mandatory.<br>A) Standards<br>B) Guidelines<br>C) Both A