What is 'Residual Risk' in the context of DevOps governance?
-
A
Risk that has been fully eliminated by controls
-
B
The risk that remains after controls and mitigation strategies have been applied
-
C
Risk transferred to a third-party vendor
-
D
Risk identified but not yet assigned to an owner