CompTIA Security+ SY0-701 Practice Question
During a risk assessment it was concluded that the value of an asset was less than the cost of the security control needed to protect it from an identified risk. Because of this, it has been decided not to use the control but still utilize the asset. What type of risk management strategy is being used?
Acceptance
Transference
Avoidance
Mitigation