What is the main purpose of information risk management?
A.
It is the process of identifying, assessing, and reducing the risk to an acceptable level.
B.
It is the process of implementing the right mechanisms to maintain that level of risk.
C.
It is the process of obtaining funding, assessing the environment, and implementing government policies.
D.
It is the process of identifying, assessing, and increasing the risk to an acceptable level and implementing the right mechanisms to maintain that level of risk.
Explanation:
Risk management is the process of identifying, assessing, and reducing
the risk to an acceptable level and maintaining it at that level.