Exam4Training

Which of the following would BEST help the information security manager determine the security requirements to resolve the control deficiency?

An internal control audit has revealed a control deficiency related to a legacy system where the compensating controls no longer appear to be effective.

Which of the following would BEST help the information security manager determine the security requirements to resolve the control deficiency?
A . Cost-benefit analysis
B . Gap analysis
C . Risk assessment
D . Business case

Answer: B

Latest CISA Dumps Valid Version with 2694 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Exit mobile version