A.Dealing with statistical and other numeric data can often be hard to interpret.

B.It requires the use of complex software tools to undertake this risk assessment.

C.There needs to be a large amount of previous data to "train" a qualitative risk methodology.

D.These risk assessments are largely subjective and require agreement on rankings beforehand.

A.Low Level and High Level Security Designs are restricted in distribution.

B.The software has been designed from its inception to be secure.

C.All code meets the technical requirements of GDPR.
https://en.wikipedia.org/wiki/Secure_by_design#:~:text=Secure%20by%20design%20(SBD)%2C,the%20foundation%20to%20be%20secure.&text=Malicious%20practices%20are%20taken%20for,or%20on%20invalid%20user%20input.

D.All security software artefacts are subject to a code-checking regime.

A.Change default system passwords.

B.Apply hardening to all applications.

C.Patch the OS to the latest version

D.Fully encrypt the hard disk.

A.Integrity.

B.Authenticity.

C.Availability.

D.Confidentiality.

A.Dedicating an access point on a dedicated VLAN connected to a firewall.

B.Using WPA encryption on the wireless network.

C.Use MAC tittering on a SOHO network with a smart group of clients.

D.Turning on SSID broadcasts to advertise security levels.