This is a dedicated watch page for a single video.
Ratio Corp is undergoing a security control assessment for its new information system. The assessor has identified a security control that is not effective in mitigating the identified risks. Which of the following is the most appropriate action for the assessor to take?