Last Updated on December 21, 2021 by InfraExam
An organization’s marketing department wants to use an online collaboration service which is not in compliance with the information security policy. A risk assessment is performed, and risk acceptance is being pursued. Approval of risk acceptance should be provided by:
- the information security manager
- business senior management
- the chief risk officer
- the compliance officer.