CAS-005 · Question #124
CAS-005 Question #124: Real Exam Question with Answer & Explanation
The correct answer is B: Create an organizational risk register for project prioritization.. The most appropriate action is to create an organizational risk register for project prioritization. This helps the company document and assess risks, prioritize critical systems, and determine which systems, such as the old 2008 Windows server running a business-critical process
Question
A regulated company is in the process of refreshing its entire infrastructure. The company has a business-critical process running on an old 2008 Windows server. If this server fails, the company would lose millions of dollars in revenue. Which of the following actions should the company take?
Options
- AAccept the risk as the cost of doing business.
- BCreate an organizational risk register for project prioritization.
- CImplement network compensating controls.
- DPurchase insurance to offset the cost if a failure occurred.
Explanation
The most appropriate action is to create an organizational risk register for project prioritization. This helps the company document and assess risks, prioritize critical systems, and determine which systems, such as the old 2008 Windows server running a business-critical process, need to be addressed most urgently. A risk register ensures that resources are allocated properly and that mitigation plans are in place for the most critical systems to prevent revenue loss in the event of a failure.
Community Discussion
No community discussion yet for this question.