Question: Which of the following BEST describes an information security manager’s role in a multidisciplinary team that will address a new regulatory requirement regarding operational risk?
A.) Ensure that all IT risks are identified
B.) Evaluate the impact of information security risks
C.) Demonstrate that IT mitigating controls are in place
D.) Suggest new IT controls to mitigate operational risk

Download pdf (with explanations) edition of this exam.