Which of the following is an approach used to mitigate risks in information systems?

Avoidance strategies are a fundamental approach in risk management for information systems, where the goal is to eliminate the risk entirely before it can cause harm. This can involve changing processes or practices to sidestep potential threats. For example, an organization may decide to discontinue using a particular system or technology that poses significant vulnerabilities, thus removing the associated risks.

While compliance with regulations is crucial for ensuring that organizations meet legal and industry standards, it doesn’t actively eliminate risks but rather helps manage them within the boundaries of those regulations. Leakage detection is focused on identifying potential data breaches or losses after they have happened, which is more reactive than proactive. Inter-department collaboration is beneficial for enhancing communication and sharing information about risks, but it does not directly address risk mitigation on its own. Avoidance strategies distinctly address and mitigate risks by opting for safer alternatives, making it a proactive method.