13d • 🙋♂️ CISSP
CISSP Practice Question – Governance & Risk
Senior management has approved funding for a new information security program. The CISO wants to ensure that the program is sustainable and aligned with business strategy.
Which of the following is the MOST important first step?
A. Develop detailed security policies and procedures for all business units.
B. Conduct a comprehensive risk assessment across the organization.
C. Implement baseline technical controls to address known vulnerabilities.
D. Establish a security steering committee with representation from business leadership.
3
23 comments
CISSP Practice Question – Governance & Risk
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+45
2
+17
3
+14
4
+14
5
+11
Powered by