Posted by: Pdfprep
Post Date: December 3, 2020
Scenario: A Chief Information Security Officer (CISO) recently had a third party conduct an audit of the security program. Internal policies and international standards were used as audit baselines. The audit report was presented to the CISO and a variety of high, medium and low rated gaps were identified.
After determining the audit findings are accurate, which of the following is the MOST logical next activity?
A . Validate gaps with the Information Technology team
B . Begin initial gap remediation analyses
C . Review the security organization’s charter
D . Create a briefing of the findings for executive management
Answer: B
Leave a Reply