nerdexam
EC-Council

712-50 · Question #280

712-50 Question #280: Real Exam Question with Answer & Explanation

The correct answer is B. Determine if sufficient mitigating controls can be applied. See the full explanation below for the reasoning.

Question

SCENARIO: A CISO has several two-factor authentication systems under review and selects the one that is most sufficient and least costly. The implementation project planning is completed and the teams are ready to implement the solution. The CISO then discovers that the product it is not as scalable as originally thought and will not fit the organization's needs. The CISO discovers the scalability issue will only impact a small number of network segments. What is the next logical step to ensure the proper application of risk management methodology within the two-facto implementation project?

Options

  • ACreate new use cases for operational use of the solution
  • BDetermine if sufficient mitigating controls can be applied
  • CDecide to accept the risk on behalf of the impacted business units
  • DReport the deficiency to the audit team and create process exceptions

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 712-50 Practice