The Authorize step of the NIST six-step approach to the risk management framework involves all but which of the following tasks?
A) Prepare the plan of action and develop milestones
B) Assemble the security authorization package
C) Determine if the cost/benefit ratio is acceptable
D) Determine the risk to organizational operations

Question

Quizplus · Accepted Answer

The tasks involved in the Authorize step of the NIST six-step approach to the risk management framework include determining the risk to organizational operations, assembling the security authorization package, and preparing the plan of action and developing milestones. However, determining the cost/benefit ratio is not typically a task involved in this step.

The Authorize Step of the NIST Six-Step Approach to the Risk