Multiple Choice
Which of the following is NOT one of the three types of performance measures used by organizations?
A) Those that determine the effectiveness of the execution of InfoSec policy
B) Those that determine the effectiveness and/or efficiency of the delivery of InfoSec services
C) Those that evaluate the compliance of non-security personnel in adhering to InfoSec policy
D) Those that assess the impact of an incident or other security event on the organizationor its mission
Correct Answer:
Verified
Correct Answer:
Verified
Q1: A legal standard that requires an organization
Q5: One question you should ask when choosing
Q6: The authorization of an IT system to
Q7: A common approach to a Risk ManagementFramework
Q9: The actions that demonstrate that an organization
Q13: Why it measurement prioritization and selection important?How
Q14: A practice related to benchmarking is _,which
Q33: Which of the following is NOT a
Q41: Which of the following InfoSec measurement specifications
Q53: Best security practices balance the need for