A financial institution is revising its cybersecurity strategy in the wake of recent cyber threats. The institution has consistently prioritized stability and predictability in its operations over potential high returns associated with higher risk ventures. When considering adjustments to the cybersecurity strategy, which of the following options BEST aligns with the institution's risk appetite?
Implementing an aggressive intrusion detection system that actively counterattacks hackers.
Investing in the latest, yet-to-be-proven security technologies to potentially gain an advantage over competitors.
Reducing the frequency of security audits to allocate more resources to potential high-growth IT projects.
Establishing additional security controls to further reduce the likelihood of data breaches.
Establishing additional security controls to further reduce the risk of data breaches aligns best with the institution's conservative risk appetite. This approach emphasizes enhancing protection and minimizing potential threats rather than taking risks for possible gains, such as reducing controls to save costs or adopting cutting-edge technologies that have not been fully vetted.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a risk appetite in cybersecurity?
Open an interactive chat with Bash
Why might a financial institution prioritize reducing security risks over adopting cutting-edge technologies?
Open an interactive chat with Bash
What role do security controls play in reducing cybersecurity risks?