Question 111
Which of the following represents the MOST negative impact resulting from an ineffective security governance program?
Question 112
As the CISO, you are the project sponsor for a highly visible log management project. The objective of the project is to centralize all the enterprise logs into a security information and event management (SIEM) system. You requested the results of the performance quality audits activity.
The performance quality audit activity is done in what project management process group?
Question 113
You have purchased a new insurance policy as part of your risk strategy. Which of the following risk strategy options have you engaged in?
Question 114
Which of the following is a benefit of information security governance?
Question 115
Scenario: A CISO has several two-factor authentication systems under review and selects the one that is most sufficient and least costly. The implementation project planning is completed and the teams are ready to implement the solution. The CISO then discovers that the product it is not as scalable as originally thought and will not fit the organization's needs. The CISO discovers the scalability issue will only impact a small number of network segments.
What is the next logical step to ensure the proper application of risk management methodology within the two- factor implementation project?