Review of risks should include
avoidance
transfer
mitigation
acceptance.