Which of the following is the MOST essential task for a chief information security officer (CISO) to perform?
A . Update platform-level security settings
B . Conduct disaster recovery test exercises
C . Approve access to critical financial systems
D . Develop an information security strategy paper
Answer: D
Explanation:
Developing a strategy paper on information security would be the most appropriate. Approving access would be the job of the data owner. Updating platform-level security and conducting recovery test exercises would be less essential since these are administrative tasks.