Multiple Choice
As part of an organization's information security governance process, a Chief Information Security Officer (CISO) is working with the compliance officer to update policies to include statements related to new regulatory and legal requirements. Which of the following should be done to BEST ensure all employees are appropriately aware of changes to the policies?
A) Conduct a risk assessment based on the controls defined in the newly revised policies
B) Require all employees to attend updated security awareness training and sign an acknowledgement
C) Post the policies on the organization's intranet and provide copies of any revised policies to all active vendors
D) Distribute revised copies of policies to employees and obtain a signed acknowledgement from them
Correct Answer:
Verified
Correct Answer:
Verified
Q155: Which of the following policies would state
Q156: A security analyst received a series of
Q157: A financial institution's business unit plans to
Q158: After a breach involving the exfiltration of
Q159: A company's marketing emails are either being
Q160: An information security analyst discovered a virtual
Q162: A security analyst is supporting an embedded
Q163: Which of the following BEST describes the
Q164: The help desk provided a security analyst
Q165: Data spillage occurred when an employee accidentally