hiexam
isaca · CISM · Q424 · multiple_choice · topic_1

An information security risk analysis BEST assists an organization in ensuring that:

An information security risk analysis BEST assists an organization in ensuring that:
  • A.the infrastructure has the appropriate level of access control.
  • B.cost-effective decisions are made with regard to which assets need protection
  • C.an appropriate level of funding is applied to security processes.
  • D.the organization implements appropriate security technologies
Explanation
Selected Answer: B CISM - AIO 2nd - The risk analyst studies different event scenarios and determines the impact of each. This may be expressed in quantitative terms (dollars or other currency) or qualitative terms (high/medium/low or a numeric scale of 1 to 5 or of 1 to 10). Sounds like B to me

Reference: examtopics_top_comment

Practice with progress tracking

Sign in to track wrong answers, get spaced-repetition reminders, and run timed exam mode.

Start tracked practicePricing