An IS steering committee should:
A . include a mix of members from different departments and staff levels.
B . ensure that IS security policies and procedures have been executed properly.
C . have formal terms of reference and maintain minutes of its meetings.
D . be briefed about new trends and products at each meeting by a vendor.
Answer: C
Explanation:
It is important to keep detailed steering committee minutes to document the decisions and activities of the IS steering committee, and the board of directors should be informed about those decisions on a timely basis. Choice A is incorrect because only senior management or high-level staff members should be on this committee because of its strategic mission. Choice B is not a responsibility of this committee, but the responsibility of the security administrator. Choice D is incorrect because a vendor should be invited to meetings only when appropriate.
Leave a Reply