Multiple Choice
Which of the following is NOT a question a CISO should be prepared to answer,about a performance measures program,according to Kovacich?
A) Why should these statistics be collected?
B) How will these statistics be collected?
C) How much will the collection of statistics cost?
D) Who will collect these statistics?
Correct Answer:
Verified
Correct Answer:
Verified
Q25: Performance measurement is an ongoing,<u>continuous improvement </u>operation._
Q26: Security efforts that seek to provide a(n)<u>acceptable</u>
Q27: It is seldom advisable to broadcast complex
Q28: Collecting project metrics may be even more
Q29: According to NIST SP 800-37,the first step
Q31: Information security performance management is the process
Q32: When an organization applies statistical and quantitative
Q33: The benefits of using information security performance
Q34: One of the most popular references for
Q35: A goal of 100 percent employee information