CISSP's Claim on Security Professionals' Decision-Making Role Questioned

The author of the post mentions that they must evaluate and discuss risks with various stakeholders and make decisions about the acceptability of mitigation measures. They emphasize that, contrary to what the CISSP says, security professionals make decisions on a daily basis.