Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 712-50 All Questions

View all questions & answers for the 712-50 exam
Go to Exam

Exam 712-50 topic 1 question 23 discussion

Actual exam question from ECCouncil's 712-50
Question #: 23
Topic #: 1
[All 712-50 Questions]

A security professional has been promoted to be the CISO of an organization. The first task is to create a security policy for this organization. The CISO creates and publishes the security policy.
This policy, however, is ignored and not enforced consistently. Which of the following is the MOST likely reason for the policy shortcomings?

  • A. Lack of a formal risk management policy
  • B. Lack of a formal security policy governance process
  • C. Lack of formal definition of roles and responsibilities
  • D. Lack of a formal security awareness program
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by tnagy at March 10, 2023, 10:39 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
claudiosousa
2 months, 3 weeks ago
D D. Lack of a formal security awareness program. Without a security awareness program, employees may not fully understand the policy, its importance, or their role in enforcing it, leading to it being ignored or inconsistently applied.
upvoted 1 times
...
claudiosousa
10 months ago
Selected Answer: B
Lack of a formal security policy governance process: This is the most probable reason for the policy being ignored. Governance involves not just the creation of policies but also the mechanisms for enforcement, monitoring, and reviewing those policies. If there's no formal governance process, there's likely no mechanism to ensure that the policy is integrated into daily operations, no accountability for non-compliance, and no regular reviews or updates to the policy. All of these factors can lead to a policy being ignored or inconsistently enforced.
upvoted 3 times
...
RC2073
1 year, 3 months ago
Selected Answer: B
B is correct. Refer to https://vceguide.com/which-of-the-following-is-the-most-likely-reason-for-the-policy-shortcomings/
upvoted 1 times
...
Kentish
1 year, 7 months ago
B makes sense as a governance process would ensure the policies are rolled out and adopted. part of this would be defining the roles and responsibilities so also answer C
upvoted 1 times
...
tnagy
1 year, 8 months ago
Selected Answer: D
Lack of Security Awareness Program
upvoted 1 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel