Watch this video on YouTube
You are IT risk manager at HDA Inc. You are considering methods to ensure that mitigated risk remains within acceptable limits. What would be the most helpful approach for a risk practitioner?