CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA Security+ SY0-701 Practice Question

In an organization's risk management framework, when might an exemption be most appropriately granted?

  • As a habitual practice for lower-priority systems to minimize the effort spent on security

  • When there is insufficient budget to implement any security measures and all risks need to be accepted

  • When compliance with a security policy or control is either not feasible or not cost-effective relative to the reduction in risk it would bring

  • Whenever a key stakeholder dislikes the constraints imposed by a certain policy or standard

This question's topic:
CompTIA Security+ SY0-701 / 
Security Program Management and Oversight
Your Score:
Security Program Management and Oversight
General Security Concepts
Threats, Vulnerabilities, and Mitigations
Security Architecture
Security Operations