What must be considered in a mitigation plan? Can outsourcing be used for risk transference? Explain.

What must be considered in a mitigation plan? Can outsourcing be used for risk transference?

Once the InfoSec team in an organization identifies its risks and evaluates the values of its information assets, the team will have to decide whether the current level of risks are acceptable or not. What are some of the factors that make this decision challenging? Justify your rationale. QUESTION 8 ========== Once the InfoSec team has identified assets with an unacceptable level of risk, the team must choose one of the five basic strategies to treat the risks for those assets. Review all five strategies and discuss the following: What conditions must be met to ensure that risk acceptance has been used properly? What must be considered in a mitigation plan? Can outsourcing be used for risk transference? Explain.

The best writing services

× How can I help you?