Systems Security Certified Practitioner (SSCP) — Question 90

Computer security should be first and foremost which of the following:

Answer options

• A. Cover all identified risks
• B. Be cost-effective.
• C. Be examined in both monetary and non-monetary terms.
• D. Be proportionate to the value of IT systems.

Correct answer: B

Explanation

The correct answer is B because cost-effectiveness is crucial in implementing security measures; it ensures resources are allocated efficiently. Options A, C, and D, while important, do not prioritize the necessity of being cost-effective in the context of security strategies.