CASP+ - CompTIA Advanced Security Practitioner Practice Test
CASP+ - CompTIA Advanced Security Practitioner CASP+ Risk Management and Compliance
An organization must choose between accepting, transferring, mitigating, or avoiding a risk.
Which option is MOST appropriate for a low-likelihood, low-impact risk where mitigation cost exceeds potential loss?
Select your answer
A
Mitigate by implementing compensating controls
B
Transfer via cyber liability insurance
C
Accept the risk and document the decision
D
Avoid the risk by discontinuing the activity
Hint
