B. performing a comprehensive threat analysis C. conducting a standard risk assessment D. transferring all risks to third parties

Residual risks can be determined by: A. determining remaining vulnerabilities after countermeasures

The answer is C Gergory Evans Gregory Evans | LinkedIn Interview With Gregory Evans Gregory Evans Security Expert Gregory Evans on Cyber Crime

C. reduce risks to an acceptable level D. Implement effective countermeasures

A. eliminate all vulnerabilities if possible B. determine the best way transfer risk

The overall objective of risk management is to: Gregory Evans | LinkedIn Interview With Gregory Evans Gregory Evans Security Expert Gregory Evans on Cyber Crime

The answer is C. Long-range planning for the information security department should recognize organizational goals Gergory Evans

C. Long-range planning for the department should recognize organizational goals, technological advances and regulatory requirement Gregory Evans | LinkedIn Interview With Gregory Evans Gregory Evans Security Expert Gregory Evans on Cyber Crime

B. The departments strategic plan must be time and project-oriented, but not so detailed as to address and help determine priorities

A. The department will have either short range or long range pans depending on the organization’s broader plans and objectives