8d • 🙋♂️ CISSP
CISSP Practice Question (Domain 1: Security and Risk Management)
A global organization adopts a cloud service to accelerate operations, despite unresolved concerns about data residency and regulatory exposure. Senior leadership accepts the business risk to meet market pressure.
As the security leader, what is the MOST appropriate next action?
A. Document the risk acceptance decision and associated residual risk
B. Implement compensating technical controls to reduce exposure
C. Transfer the risk through expanded cyber insurance coverage
D. Escalate the decision to regulators for formal guidance
2
26 comments
CISSP Practice Question (Domain 1: Security and Risk Management)
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+86
2
+59
3
+42
4
+33
5
+31
Powered by