⚡Flash Sale: 33% off Annual Membership, limited time only!⚡

CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA Security+ SY0-701 Practice Question

A company is revising its strategic plan and wants to balance its growth objectives with its information security risks. The company seeks neither to aggressively pursue risk for potential gains nor to minimize risk at the expense of new opportunities. Which of the following best describes the company's risk strategy?

  • The company assesses security risks on a case-by-case basis, with no predefined strategy towards risk.

  • The company is adopting a neutral risk strategy to support steady growth while efficiently managing security risks.

  • The company is aggressively expanding into new markets, often prioritizing potential gains over the strict management of information security risks.

  • The company strictly minimizes any potential security risks, even if it means passing on potentially lucrative opportunities.

This question's topic:
CompTIA Security+ SY0-701 / 
Security Program Management and Oversight
Your Score:
Security Program Management and Oversight
General Security Concepts
Threats, Vulnerabilities, and Mitigations
Security Architecture
Security Operations