Which activity below is NOT included in the information security risk assessment process?
The information security risk assessment process, as outlined in ISO/IEC 27005, typically includes identifying risks, assessing their potential impact, and prioritizing them. However, selecting risk treatment options is not part of the risk assessment process itself; it is part of the subsequent risk treatment phase. Therefore, option C is the correct answer as it is not included in the risk assessment process.
Roosevelt
28 days agoTu
1 months agoFelicia
4 days agoTomoko
1 months agoSherly
5 days agoNida
7 days agoDana
10 days agoMeghan
24 days agoDean
1 months agoJamika
25 days agoDong
27 days agoAlyce
1 months agoRoosevelt
1 months ago