CISM Certified Information Security Manager – Question0367

Risk identification, analysis, and mitigation activities can BEST be integrated into business life cycle processes by linking them to:

A.
compliance testing
B. configuration management
C. continuity planning
D. change management

Correct Answer: B