Answer:
The correct answer is letter "D": risk.
Step-by-step explanation:
Security policies and controls are all the efforts companies make to safeguard its valuable assets whether tangible -e.g. materials, equipment, inventory- or intangible -software, project plans, budgets. Security policies aim to reduce the harm of attacks that could be inevitable, thus, the risks inherent to the operations of the business must be balanced with the corporate control which should be evaluated frequently.