Certified Incident Handler (ECIH v3) — Question 86

If the loss anticipated is greater than the agreed upon threshold; the organization will:

Answer options

• A. Accept the risk
• B. Mitigate the risk
• C. Accept the risk but after management approval
• D. Do nothing

Correct answer: B

Explanation

The correct answer is B because when a potential loss surpasses the agreed threshold, organizations typically implement measures to reduce the risk to an acceptable level. Options A and C involve accepting the risk, which does not address the need for action when the threshold is exceeded. Option D suggests inaction, which is not a responsible approach in risk management.