An organization automatically approves exceptions to security policies on a recurring basis. This practice is MOST likely the result of:

An organization automatically approves exceptions to security policies on a recurring basis. This practice is MOST likely the result of:
A . a lack of mitigating actions for identified risk.
B . ineffective IT governance.
C . ineffective service delivery.
D . decreased threat levels.

View Answer

Answer: B