Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 1d 23h 3m 35s Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Eccouncil Exam 512-50 Topic 7 Question 35 Discussion

Actual exam question for Eccouncil's 512-50 exam
Question #: 35
Topic #: 7
[All 512-50 Questions]

Acceptable levels of information security risk tolerance in an organization should be determined by?

Show Suggested Answer Hide Answer
Suggested Answer: D

Contribute your Thoughts:

Gaston
1 months ago
I'm feeling a bit risky today, so I'm going to go with option A. Just kidding! Option C is clearly the right answer. Gotta keep those C-suite folks in charge of the big decisions.
upvoted 0 times
Dorthy
4 days ago
Definitely, they have the overall responsibility for the organization.
upvoted 0 times
...
Brandon
16 days ago
I agree, the CEO and board of directors should be the ones determining the risk tolerance.
upvoted 0 times
...
...
Lawana
1 months ago
The CISO should definitely have a say, but the final decision should come from the top. Can't leave it up to just one person, you know?
upvoted 0 times
Ruthann
6 days ago
The CISO's input is important, but ultimately the final decision should come from the top.
upvoted 0 times
...
Viva
17 days ago
I agree, it should be a collective decision involving the CEO and board of directors.
upvoted 0 times
...
...
Steffanie
1 months ago
Haha, I bet the corporate legal counsel would just say 'don't take any risks at all!' That's not very practical. Option C is the way to go.
upvoted 0 times
...
Judy
2 months ago
I'm going with option C. The CEO and board have the authority and responsibility to make these kinds of strategic decisions for the organization.
upvoted 0 times
Argelia
21 hours ago
Corporate legal counsel can provide valuable input on the legal implications of different risk tolerance levels.
upvoted 0 times
...
Celestina
3 days ago
I think it's important for the CISO to also be involved, as they understand the technical aspects of security.
upvoted 0 times
...
Carman
10 days ago
It makes sense to involve the CEO and board in such important decisions. They have the big picture view of the company.
upvoted 0 times
...
Latosha
15 days ago
I agree, they are the ones ultimately responsible for the organization's overall strategy and direction.
upvoted 0 times
...
Merilyn
1 months ago
I agree, the CEO and board should have the final say on information security risk tolerance.
upvoted 0 times
...
Man
1 months ago
Option C is the best choice. The CEO and board should have the final say on information security risk tolerance.
upvoted 0 times
...
...
Sherita
2 months ago
The CEO and board of directors should definitely be the ones to determine the acceptable levels of information security risk tolerance. They have the big picture in mind and can weigh the risks against the company's goals.
upvoted 0 times
Bernardo
11 days ago
C) CEO and board of directors
upvoted 0 times
...
Miriam
13 days ago
B) CISO with reference to the company goals
upvoted 0 times
...
Refugia
1 months ago
A) Corporate legal counsel
upvoted 0 times
...
...
Bea
2 months ago
But shouldn't the CEO and board of directors have the final say?
upvoted 0 times
...
Danilo
2 months ago
I agree with Valene, the CISO is responsible for information security.
upvoted 0 times
...
Valene
3 months ago
I think the CISO should determine the risk tolerance.
upvoted 0 times
...

Save Cancel
a