Which of the following would BEST help the information security manager determine the security requirements to resolve the control deficiency?

CISA 0 Comments

An internal control audit has revealed a control deficiency related to a legacy system where the compensating controls no longer appear to be effective.

Which of the following would BEST help the information security manager determine the security requirements to resolve the control deficiency?
A . Cost-benefit analysis
B . Gap analysis
C . Risk assessment
D . Business case

Answer: B

Latest CISA Dumps Valid Version with 2694 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download CISA PDF     CISA Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments