Question: 1
Which of the following is the BEST way to determine if a recent investment in access control software was successful?
Question: 2
Which of the following provides the MOST relevant information to determine the overall effectiveness of an information security program and underlying business processes?
Question: 3
Which of the following is the MOST important objective of testing a security incident response plan?
Question: 4
A new information security manager finds that the organization tends to use short-term solutions to address problems. Resource allocation and spending are not effectively tracked, and there is no assurance that compliance requirements are being met. What should be done FIRST to reverse this bottom-up approach to security?
Question: 5
An external security audit has reported multiple instances of control noncompliance. Which of the following is MOST important for the information security manager to communicate to senior management?