CompTIA CySA+ (CS0-003) — Question 430
Which of the following risk management principles is accomplished by purchasing cyber insurance?
Answer options
- A. Accept
- B. Avoid
- C. Mitigate
- D. Transfer
Correct answer: D
Explanation
The correct answer is D, Transfer, because purchasing cyber insurance allows an organization to transfer the financial risk associated with cyber incidents to the insurance provider. The other options do not apply: Accept means taking on the risk, Avoid means eliminating the risk entirely, and Mitigate refers to reducing the risk but not transferring it.