A penetration test reveals several vulnerabilities in a web-facing application. Which of the following should be the FIRST step in selecting a risk response? A. Assess the level of risk associated with the vulnerabilities. B. Communicate the vulnerabilities to the risk owner. C. Correct the vulnerabilities to mitigate potential risk exposure. D. Develop a risk response action plan with key stakeholders. Â Suggested Answer: B This question is in CRISC exam For getting Risk and Information Systems Control Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by ISACA. The website does not contain actual questions and answers from ISACA's Certification Exams. Trademarks, certification & product names are used for reference only and belong to ISACA.
Please login or Register to submit your answer