if a church has no security plan in place, what would be a less pertinent component for that particular environment during a vulnerability assessment?
2 answers
less pertinent component than what?
I would look for responsible people, and find out what their responsibilities are: physical, finances, data systems.