AllExam Dumps

DUMPS, FREE DUMPS, VCP5 DUMPS| VMWARE DUMPS, VCP DUMPS, VCP4 DUMPS, VCAP DUMPS, VCDX DUMPS, CISCO DUMPS, CCNA, CCNA DUMPS, CCNP DUMPS, CCIE DUMPS, ITIL, EXIN DUMPS,


READ Free Dumps For
Warning: Undefined variable $vendor in /home1/bandbozu/getfreedumps.com/quiz.php on line 141
-
Warning: Undefined variable $exam_number in /home1/bandbozu/getfreedumps.com/quiz.php on line 141





Question ID 16933

Which of the following is the BEST justification to convince management to invest in an
information security program?

Option A

Cost reduction

Option B

Compliance with company policies

Option C

Protection of business assets

Option D

 Increased business value

Correct Answer D
Explanation Explanation: Investing in an information security program should increase business value and confidence. Cost reduction by itself is rarely the motivator for implementing an information security program. Compliance is secondary to business value. Increasing business value may include protection of business assets.


Question ID 16934

The MOST useful way to describe the objectives in the information security strategy is
through:

Option A

attributes and characteristics of the 'desired state."

Option B

overall control objectives of the security program.

Option C

mapping the IT systems to key business processes.

Option D

calculation of annual loss expectations.

Correct Answer A
Explanation Explanation: Security strategy will typically cover a wide variety of issues, processes, technologies and outcomes that can best be described by a set of characteristics and attributes that are desired. Control objectives are developed after strategy and policy development. Mapping IT systems to key business processes does not address strategy issues. Calculation of annual loss expectations would not describe the objectives in the information security strategy.

Send email to admin@getfreedumps for new dumps request!!!