After consulting with the IT department, you have determined that a particular security solution is
quite effective for protecting a particular resource, but not necessary due to the expense. Which of
the following was conducted to enable this conclusion?
A.
Risk analysis
B.
Cost-to-benefit analysis
C.
Physical security analysis
D.
Resource priority analysis
Explanation: