CompTIA CASP+ (CAS-004) — Question 471
The Chief Information Security Officer of a large multinational organization has asked the security risk manager to use risk scenarios during a risk analysis. Which of the following is the most likely reason for this approach?
Answer options
- A. To connect risks to business objectives
- B. To ensure a consistent approach to risk
- C. To present a comprehensive view of risk
- D. To provide context to the relevancy of risk
Correct answer: D
Explanation
Using risk scenarios helps to provide context to the relevancy of risk, making it easier for stakeholders to understand the implications of potential threats. The other options, while important in a broader risk management framework, do not specifically address the need to contextualize risk in relation to the organization's objectives and environment.