CompTIA Security+ SY0-701 Practice Question
What is the PRIMARY purpose of risk reporting within an organization's risk management strategy?
To enforce regulatory compliance and avoid potential legal penalties.
To allocate the annual budget for the information security department.
To execute the deployment of technical controls across the organization's network.
To document and communicate the identified risks to stakeholders responsible for decision-making.