AllExam Dumps

DUMPS, FREE DUMPS, VCP5 DUMPS| VMWARE DUMPS, VCP DUMPS, VCP4 DUMPS, VCAP DUMPS, VCDX DUMPS, CISCO DUMPS, CCNA, CCNA DUMPS, CCNP DUMPS, CCIE DUMPS, ITIL, EXIN DUMPS,


READ Free Dumps For
Warning: Undefined variable $vendor in /home1/bandbozu/getfreedumps.com/quiz.php on line 141
-
Warning: Undefined variable $exam_number in /home1/bandbozu/getfreedumps.com/quiz.php on line 141





Question ID 16861

In implementing information security governance, the information security manager is
PRIMARILY responsible for:

Option A

 developing the security strategy.

Option B

reviewing the security strategy.

Option C

 communicating the security strategy.

Option D

approving the security strategy

Correct Answer A
Explanation Explanation: The information security manager is responsible for developing a security strategy based on business objectives with the help of business process owners. Reviewing the security strategy is the responsibility of a steering committee. The information security manager is not necessarily responsible for communicating or approving the security strategy.


Question ID 16862

When designing an information security quarterly report to management, the MOST
important element to be considered should be the:

Option A

 information security metrics.

Option B

 knowledge required to analyze each issue.

Option C

linkage to business area objectives.

Option D

baseline against which metrics are evaluated.

Correct Answer C
Explanation Explanation: The link to business objectives is the most important clement that would be considered by management. Information security metrics should be put in the context of impact to management objectives. Although important, the security knowledge required would not be the first element to be considered. Baselining against the information security metrics will be considered later in the process.

Send email to admin@getfreedumps for new dumps request!!!