Isaca Certified Information Security Manager CISM Question # 207 Topic 21 Discussion

CISM Exam Topic 21 Question 207 Discussion:

Question #: 207

Topic #: 21

Which of the following is the BEST strategy when determining an organization's approach to risk treatment?

Implementing risk mitigation controls that are considered quick wins

Prioritizing controls that directly mitigate the organization's most critical risks

Advancing the maturity of existing controls based on risk tolerance

Implementing a one-size-fits-all set of controls across all organizational units

Get Premium CISM Questions

Actual exam question for Isaca CISM exam by Vega6125 at Jan 18, 2026, 11:06:11 PM

Chosen Answer: A B C D
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.