A Chief Information Security Officer (CISO) has developed information security policies that relate to the software development methodology. Which of the following would the CISO most likely include in the organization’s documentation?
The correct answer is:
A. Peer review requirements
Explanation:
Peer review requirements are directly related to software development methodologies and are a critical part of ensuring code quality, security, and adherence to best practices. Including peer review requirements in the organization’s documentation aligns with the CISO’s focus on integrating security into the software development lifecycle (SDLC).
Multifactor authentication (B) is a security control but is more related to access management than software development methodologies.
Branch protection tests (C) are specific to version control systems (e.g., Git) and are more operational in nature rather than a policy-level requirement.
Secrets management configurations (D) are important for securing sensitive information like API keys and passwords, but they are more of an implementation detail rather than a policy-level documentation item.
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.SY0-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Anyio
3 months ago