CISSP – Information Systems Security Management Professional (ISSMP) — Question 32
You are the project manager of the HJK project for your organization. You and the project team have created risk responses for many of the risk events in the project. A teaming agreement is an example of what risk response?
Answer options
- A. Mitigation
- B. Sharing
- C. Acceptance
- D. Transference
Correct answer: B
Explanation
A teaming agreement is a form of risk response that involves collaborating with another party to share the responsibility and benefits of a risk. This is categorized as 'Sharing' because it allows both parties to mitigate the impact of the risk together. The other options, such as 'Mitigation', focus on reducing the probability or impact of a risk directly by taking measures, while 'Acceptance' means acknowledging the risk without taking action, and 'Transference' involves shifting the risk to another party, which is not applicable here.