To gain a clear understanding of the impact that a new regulatory requirement will have on an organization’s information security controls, an information security manager should FIRST:

Posted by: Pdfprep Category: CISM Tags: Isaca Certificaton, CISM exam questions, CISM practice exam Post Date: November 22, 2020

To gain a clear understanding of the impact that a new regulatory requirement will have on an organization’s information security controls, an information security manager should FIRST:
A . interview senior management
B . conduct a risk assessment
C . conduct a cost-benefit analysis
D . perform a gap analysis

Answer: D

To gain a clear understanding of the impact that a new regulatory requirement will have on an organization’s information security controls, an information security manager should FIRST:

Author

Leave a Reply Cancel reply