Which of the Following Specifies How to Do Certification by External

Q33: The growing number of compliance laws and

Q34: _ is preferred by U.S. auditors.<br>A) ISO/IEC

Q35: Security metrics allow a company to know

Q36: The ISO/IEC 2700 family focuses on _.<br>A)

Q37: Employees usually must rationalize bad behavior.

Q39: Many compliance regimes require firms to adopt

Q40: The goal of IT security is reasonable

Q41: _ are payments made by a supplier

Q42: The worst problem with classic risk analysis

Q43: Companies should replace their legacy security technologies