Explore the crucial role of aligning accepted information security risks with overall business strategy in a dynamic environment. Enhance your understanding for the CISM exam.
Table of Contents
Question
In an organization with a rapidly changing environment, business management has accepted an information security risk. It is MOST important for the information security manager to ensure:
A. change activities are documented.
B. compliance with the risk acceptance framework.
C. the rationale for acceptance is periodically reviewed.
D. the acceptance is aligned with business strategy.
Answer
D. the acceptance is aligned with business strategy.
Explanation
While all options are important aspects of risk management, ensuring alignment with business strategy is paramount. This guarantees that accepting the risk supports the organization’s overall objectives and doesn’t hinder its long-term goals.
Isaca Certified Information Security Manager CISM certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Isaca Certified Information Security Manager CISM exam and earn Isaca Certified Information Security Manager CISM certification.