Question 68
Main Page
A CISO learns the organization lacks business impact assessments (BIAs). What is the immediate risk?
A. Overspending on endpoint security
B. Misaligned recovery priorities
C. Overreporting to auditors
D. Excessive password resets
Answer: Misaligned recovery priorities
Without BIA, recovery efforts may not prioritize the most critical systems, increasing operational risk.
Next Question