Mysystem.org IT ExamsCISM Question 94 2017-04-06
Question: Which of the following would be of GREATEST importance to the security manager in determining whether to accept residual risk?
A.) Historical cost of the asset
B.) Acceptable level of potential business impacts
Answer ==> C.) Cost versus benefit of additional mitigating controls
D.) Annualized loss expectancy (ALE)