Exam CISA Topic 1 Question 54 Discussion
Actual exam question for ISACA's CISA exam
Question #: 54
Topic #: 1
Question #: 54
Topic #: 1
Which of the following does a lack of adequate security controls represent?
Suggested Answer: D Vote an answer
The lack of adequate security controls represents a vulnerability, exposing sensitive information and data to the risk of malicious damage, attack or unauthorized access by hackers. This could result in a loss of sensitive information and lead to theloss of goodwill for the organization. A succinct definition of risk is provided by the Guidelines for the Management of IT Security published by the International Organization for Standardization (ISO), which defines risk as the 'potential that a given threat will exploit the vulnerability of an asset or group of assets to cause loss or damage to the assets.' The various elements of the definition are vulnerability, threat, asset
and impact. Lack of adequate security functionalityin this context is a vulnerability.
and impact. Lack of adequate security functionalityin this context is a vulnerability.
by Lester at Jul 08, 2024, 06:24 AM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).