2d • 🙋♂️ CISSP
CISSP Practice Question (Domain 1: Security and Risk Management)
Senior leadership wants to launch a new customer analytics platform that processes regulated personal data. The CISO identifies control gaps that exceed the organization’s stated risk appetite, but executives are pushing for speed to market.
What is the MOST appropriate action for the CISO to take NEXT?
A. Document the risk and accept it to support business objectives
B. Implement compensating controls within the security team
C. Escalate the risk to senior management for formal risk acceptance
D. Delay the project until all identified risks are fully mitigated
Come back for the answer tomorrow! Study more now at CISSP.app
0
20 comments
CISSP Practice Question (Domain 1: Security and Risk Management)
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+45
2
+38
3
+31
4
+28
5
+26
Powered by