D. Strategy of Acceptance-It Is A Control Strategy Where The Organization Choose To Do

a. Strategy of defense aims to prevent exploitation of vulnerabilities through safeguards. It eliminates or reduces uncontrolled risks. b. Strategy of transference shifts risks to other assets, processes, or organizations to transfer risks away from the organization. c. Strategy of mitigation attempts to reduce the impact of exploiting vulnerabilities through planning and preparation, having timely solutions to reduce loss or damage. d. Strategy of acceptance chooses to do nothing about a vulnerability and just accepts the outcome of its exploitation with acknowledgment of the risks. e. Strategy of termination decides to terminate business activities or not proceed with particular activities to avoid uncontrollable risks that could

Uploaded by

Enitsuj Eam Eugarbal

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

21 views

D. Strategy of Acceptance-It Is A Control Strategy Where The Organization Choose To Do

Uploaded by

Enitsuj Eam Eugarbal

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

You are on page 1/ 2

Review Questions:

Answer the following:

1. Research what is competitive advantage? How has it changed in the years since the IT
industry began? (5pts)
Answer:
Competitive advantage refers to factors that allow a company to produce goods or
services better or more cheaply than its rivals. These factors allow the productive entity to
generate more sales or superior margins compared to its market rivals. Competitive advantage
changed when IT era began in the way that in the early days of IT systems, competitive
advantage was common; nowadays, firms function at a comparable level of automation..
Having an IT security standards can have a huge impact on your business. They affect your
brand reputation, customer satisfaction and ability to win (and keep) new business so having
these will have a competitive advantage compare to your competitors. Information security
is the new competitive advantage as attacks erode customer confidence and threaten
the integrity of intellectual property and systems.To be successful in the global
environment, it is essential that organization implement a strong strategy to collect,
store, manage and secure information.

2. Research what is competitive disadvantage? Why has it emerged as a factor? (5pts)

Answer:
A competitive disadvantage is an unfavorable circumstance or condition that causes a
firm to underperform in an industry. Disadvantages typically include things such as know-
how, scale, scope, location, distribution, quality, product features, process efficiency,
productivity and costs. This is a factor since, in this day and age, practically every firm has an
IT system. As a result, firms must acquire or update their IT systems to avoid falling behind
the competition.

3. In your own words, briefly describe the following strategies (10 pts)

a. Strategy of defense- Strategy of defense is a risk control strategy attempts to prevent

the exploitation of the vulnerability. Also it is the application of safeguards to
eliminate or reduce the risks that remain uncontrolled.

b. Strategy of transference- Strategy of transference is control strategy that attempts to

shift risk to other assets, other processes, or other organizations.Also it is the shifting
of risks to other areas or to outside entities or transferring the risk that may come to
external entities so that the risk will not be directed to the organization.

c. Strategy of mitigation- it is a risk control strategy wherein it attempts to reduce the

impact caused by the exploitation of vulnerability through planning and preparation. It
is also where the organization preparing and having a timely solutions in order to
reduce the loss or damage dealt by the organization.