cisa video for you are the information system auditor of HDA Inc. Prior to a follow-up audit, you learn that management has decided to accept a level of
You are the information system auditor of HDA Inc. Prior to a follow-up audit, you learn that management has decided to accept a level of residual risk related to an audit finding without remediation. You are concerned about management's decision. Which of the following should be your NEXT course of action?