Enterprise Information Security Assessment

Questions and Answers

Which of the following risk assessment outputs is MOST suitable to help justify an enterprise information security program?

An inventory of risk that may impact the enterprise

Documented threats to the enterprise

Evaluation of the consequences

A list of appropriate controls for addressing risk (correct)