Blog

True or False? An organization’s information security officer (ISO) is accountable for monitoring adherence to laws and regulations.

True or False? Data owners ensure that only the access needed to perform day-to-day operations is granted and that duties are separated adequately to mitigate the risk of errors and fraud.

Implementing security policies is easier if you manage it from a change model perspective. Which of the following change model steps requires leadership to back you and to establish a tone at the top for the need for the security policy?

All of the following are true of measuring the effectiveness of security policies, except:

An event that affects the entire organization operates, such as a merger or an acquisition, is best described as:

All of the following are true of human resources (HR) policies, except:

True or False? One of the basic measurements for assessing whether or not individuals are being held accountable for adherence to security policies is the reported number of security violations by employees.

True or False? The reliability of a virtual private network (VPN) depends on the Internet service provider (ISP).

An organization typically has many different stakeholders. What of the following stakeholders is most likely concerned with the timely delivery of high-quality products and services at competitive prices?

For leaders, implementing security policies is about working through others to gain their support and adhere to policies. Which of the following is not one of the widely accepted leadership rules that apply to security policies?