CompTIA Project+ (PK0-005) — Question 347

There is an important security patch that must be applied to the operating system used by the project team. Which of the following is the best risk management strategy to apply in this instance?

Answer options

• A. Accept the risk because it is beyond the control of the project manager and team.
• B. Avoid the risk by using different operating systems for the remainder of the project.
• C. Mitigate the risk by scheduling the update outside of working hours.
• D. Exploit the risk by incorporating the anticipated modifications into the plan.

Correct answer: C

Explanation

The correct answer is C because scheduling the update outside of working hours minimizes disruption and ensures the patch is applied promptly. Option A is incorrect since accepting the risk does not address the security concern. Option B is not feasible as switching operating systems may introduce further complications. Option D is inappropriate because exploiting a risk does not effectively manage the security vulnerability.