re$10$pi$14$r$\mathrm{.}02\mathrm{.}080$

Question $11$ of $100$

Because some threats, such as insider fraud, are more likely to occur than others, step $3$ of the risk assessment process is to

a$.$ perform a cost$-$benefit analysis to ensure that your efforts will be cost effective

b$.$ identify the set of IT assets about which the organization is most concerned

c$.$ determine how each threat can be mitigated so it becomes less likely to occur

d$.$ assess the frequency of events or the likelihood of each potential threat