READ Free Dumps For ISC- CISSP
| Question ID 21568 | When developing an information security policy, what is the FIRST step that should be taken? |
| Option A | Obtain copies of mandatory regulations. |
| Option B | Gain management approval. |
| Option C | Seek acceptance from other departments. |
| Option D | Ensure policy is compliant with current working practices. |
| Correct Answer | B |
| Question ID 21569 | Which one of the following should NOT be contained within a computer policy? |
| Option A | Definition of management expectations. |
| Option B | Responsibilities of individuals and groups for protected information. |
| Option C | Statement of senior executive support. |
| Option D | Definition of legal and regulatory controls. |
| Correct Answer | B |