Which of the following is a technique used in risk assessment?

Cost-benefit analysis is a fundamental technique used in risk assessment because it enables organizations to evaluate the potential economic impacts of risk mitigation strategies. By comparing the costs of implementing specific controls or safeguards against the benefits gained from reducing risk, organizations can make informed decisions about which measures are justified based on their financial implications. This analysis plays a crucial role in prioritizing risks and allocating resources effectively, ensuring that the most critical vulnerabilities are addressed in a manner that aligns with the organization’s overall risk management strategy.

In contrast, change management reviews generally focus on managing and overseeing changes within an organization to minimize disruption and maintain service quality, rather than assessing risks directly. Employee feedback surveys gather perceptions and insights from employees but do not specifically aid in quantifying or analyzing risks. Market analysis involves studying economic and competitive trends, which can be valuable for strategic planning but does not directly relate to assessing risks associated with security vulnerabilities or control measures within an organization. Thus, cost-benefit analysis stands out as a technique specifically tailored for risk assessment.