()isnotincludedinInformationSecurityRiskAssessmentProcess.
A.Establishing information security risk criteria B.Identifying the information security risks C.Formulating an information security risk treatment plan D.Analysing the information security risk正确答案A
