Certified Information Security Manager Exam Questions

Isaca

Certified Information Security Manager

273 / 500

Question 273:

After obtaining commitment from senior management, which of the following should be completed NEXT when establishing an information security program?

Answer options:

A. Define security metrics
B. Conduct a risk assessment
C. Perform a gap analysis
D. Procure security tools

Add to favourites