An organization's board of directors is concerned about recent data breaches in the news and wants to assess its exposure to similar scenarios. Which of the following is the BEST course of action? A. Reassess the risk appetite and tolerance levels of the business. B. Review the organization's data retention policy and regulatory requirements. C. Evaluate the organization's existing data protection controls. D. Evaluate the sensitivity of data that the business needs to handle. Â Suggested Answer: C This question is in CRISC exam For getting Risk and Information Systems Control Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by ISACA. The website does not contain actual questions and answers from ISACA's Certification Exams. Trademarks, certification & product names are used for reference only and belong to ISACA.
Please login or Register to submit your answer