Secure Software Lifecycle Professional – CSSLP – Question150

Which of the following are the goals of risk management? Each correct answer represents a complete solution. Choose three.

A.
Identifying the risk
B. Assessing the impact of potential threats
C. Identifying the accused
D. Finding an economic balance between the impact of the risk and the cost of the countermeasure

Correct Answer: ABD

Explanation:

Explanation: There are three goals of risk management as follows: Identifying the risk Assessing the impact of potential threats Finding an economic balance between the impact of the risk and the cost of the countermeasure Answer: C is incorrect. Identifying the accused does not come under the scope of risk management.