Certified in Risk and Information Systems Control (CRISC) — Question 77

Which of the following is the FIRST step in managing the security risk associated with wearable technology in the workplace?

Answer options

• A. Develop risk awareness training
• B. Monitor employee usage
• C. Identify the potential risk
• D. Assess the potential risk

Correct answer: C

Explanation

The correct answer is C, as identifying the potential risk is essential before any further actions can be taken. Without first recognizing the specific risks posed by wearable technology, steps like monitoring or assessing the risks would be ineffective or misguided.