A security gap has been found in your hospital environment. After an impact assessment, you’ve concluded that the probability that the risk will occur is very high, and the impact could result in a financial loss of $50,000–$100,000 depending on how much data is compromised as a result of the gap. The cheapest solution that will fix the issue costs $250,000. Based on ISO’s six options for addressing risk (Avoid, Accept, Retain, Remove, Change, and Share), what actions you recommend? Discuss why you recommend each action.
