Question: After a risk assessment, it is determined that the cost to mitigate the risk is much greater than the benefit to be deriveD.) The information security manager should recommend to business management that the risk be:
A.) transferreD.)
B.) treateD.)
C.) accepteD.)
D.) terminateD.)

Download pdf (with explanations) edition of this exam.