When performing an information risk analysis, an information security manager should FIRST:

Posted by: Pdfprep Category: CISM Tags: Isaca Certificaton, CISM exam questions, CISM practice exam Post Date: November 24, 2020

When performing an information risk analysis, an information security manager should FIRST:
A . establish the ownership of assets.
B . evaluate the risks to the assets.
C . take an asset inventory.
D . categorize the assets.

Answer: C

Explanation:

Assets must be inventoried before any of the other choices can be performed.

When performing an information risk analysis, an information security manager should FIRST:

Author

Leave a Reply Cancel reply