Certified Information Systems Security Professional – CISSP – Question014

Which of the following mandates the amount and complexity of security controls applied to a security risk?

A.
Security vulnerabilities
B. Risk tolerance
C. Risk mitigation
D. Security staff

Correct Answer: C