The decision as to whether a risk has been reduced to an acceptable level should be determined by:

  • Post author:
  • Post category:Uncategorized
  • Post comments:0 Comments
  • Post last modified:December 21, 2021
  • Reading time:1 mins read

Last Updated on December 21, 2021 by Admin

The decision as to whether a risk has been reduced to an acceptable level should be determined by:

  • organizational requirements.
  • information systems requirements.
  • information security requirements.
  • international standards.
Explanation:
Organizational requirements should determine when a risk has been reduced to an acceptable level. Information systems and information security should not make the ultimate determination. Since each organization is unique, international standards of best practice do not represent the best solution.
0 0 votes
Article Rating
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments