Question: 1
Risk reporting requirements should be PRIMARILY based on:
Question: 2
The BEST way to minimize errors in the response to an incident is to:
Question: 3
In an organization where IT is critical to its business strategy and where there is a high level of operational dependence on IT, senior management commitment to security is BEST demonstrated by the:
Question: 4
An information security manager has implemented an ongoing security awareness training program. Employee participation has been decreasing over the year, while the number of malware and phishing incidents from email has been increasing. What is the information security manager's BEST course of action?
Question: 5
A risk profile supports effective security decisions PRIMARILY because it: