One of the information security risk treatment strategies, in which an organization eliminates a risk by ceasing or withdrawing from the activity or service that creates it. Unlike risk reduction, transfer, or acceptance, risk avoidance means completely abandoning the source of the risk. It is typically chosen when the risk is too large and mitigation costs are not justifiable.

Past questions testing this term · 1 questions

• 2015h27h #53ISMSにおけるセキュリティリスクへの対応には，リスク移転，リスク回避，リスク受容及びリスク低減がある。リスク回避に該当する事例はどれか。