Question 54
Main Page
You notice that several IT systems have not been assessed for risk in over a year. What’s your immediate next step?
A. Accept the risks
B. Update the disaster recovery plan
C. Reassess the systems and update the risk register
D. Renew antivirus licenses
Answer: C. Reassess the systems and update the risk register
Regular assessments are necessary to ensure new threats and vulnerabilities are captured, maintaining relevance of risk data.