Multiple Choice
As part of the asset management life cycle, a company engages a certified equipment disposal vendor to appropriately recycle and destroy company assets that are no longer in use. As part of the company's vendor due diligence, which of the following would be MOST important to obtain from the vendor?
A) A copy of the vendor's information security policies.
B) A copy of the current audit reports and certifications held by the vendor.
C) A signed NDA that covers all the data contained on the corporate systems.
D) A copy of the procedures used to demonstrate compliance with certification requirements.
Correct Answer:
Verified
Correct Answer:
Verified
Q212: A security engineer discovers a PC may
Q213: A Chief Security Officer (CSO) is reviewing
Q214: A security engineer is employed by a
Q215: Given the code snippet below: <img src="https://d2lvgg3v3hfg70.cloudfront.net/C1257/.jpg"
Q216: An information security manager is concerned that
Q218: Providers at a healthcare system with many
Q219: A company has created a policy to
Q220: A company uses an application in its
Q221: Ann, a security administrator, is conducting an
Q222: A large enterprise with thousands of users