The business owner is aware of this issue and chooses to accept the risk. Which of the following is the auditor’s BEST course of action?

  • Post author:
  • Post category:Uncategorized
  • Post comments:0 Comments
  • Post last modified:December 21, 2021
  • Reading time:1 mins read

Last Updated on December 21, 2021 by Admin

An IS auditor finds that intellectual property is not being protected to the level specified in the organization’s data classification and protection policy. The business owner is aware of this issue and chooses to accept the risk. Which of the following is the auditor’s BEST course of action?

  • Note the finding and request formal acceptance.
  • Include the finding in the follow-up audit.
  • Amend the data classification policy.
  • Form a committee and further investigate the issue.
0 0 votes
Article Rating
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments