Q). While employing physical, administrative and technical controls on what basis does an information security manager prioritize the implementation of controls?

A. Internal audit expectation.
B. Risk assessment.
C. Technical architecture.
D. Vendor Recommendations.

Answer:

Out of the choices given, it is clear that Risk Management helps the Infomration Security Manager in prioritizing Control Implementations.