Mysystem.org IT ExamsCISM Question 97 2017-04-06
Question: A risk management program would be expected to:
A.) remove all inherent risk.
Answer ==> B.) maintain residual risk at an acceptable level.
C.) implement preventive controls for every threat.
D.) reduce control risk to zero.
Download pdf (with explanations) edition of this exam.