Clearly its B and not C: How can you conduct reviews, if the information security objectives are not set? On what basis will you conduct regular reviews? None.
The most important function of an information security steering committee is to ensure that the information security strategy aligns with the broader corporate strategy, which involves defining the objectives of the information security framework (B).
I think it's C, the security team should primarily review and update the security framework. For the committee, they should focus more on the security business initiatives discussion.
IMO, it's C - Conducting regular independent reviews of the state of security in the business.
Steering committee does the following:
• ensures that security programs support the business objectives
• evaluates and prioritizes the security programs
• evaluates emerging risks, security practices, and compliance-related issues.
In other words, they periodically check the state of security in the business, independently of infosec and IT.
A. Evaluating the effectiveness of information security controls on a periodic basis
The most important function of an information security steering committee is to ensure that the organization's information security controls are effective in protecting its assets and data. This involves regularly evaluating and assessing the state of security in the business to identify weaknesses, vulnerabilities, and areas for improvement. Without effective controls, the organization's information and assets are at risk, making it crucial for the committee to focus on this function. While the other options are also important aspects of information security management, evaluating control effectiveness is fundamental to maintaining a strong security posture.
Dude, you've soo failed the CISM if you relied this much on ChatGPT for correct answers... xD Use this site to practice and learn, don't try to cheat your way to CISM or CISSP.
B. Defining the objectives of the information security framework
upvoted 2 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Josef4CISM
1 week, 3 days agohelg420
6 months, 1 week ago03allen
6 months, 3 weeks agoyottabyte
7 months, 3 weeks agoshervin2s
8 months agoSalilgen
8 months, 4 weeks agooluchecpoint
9 months, 3 weeks agoAlexJacobson
9 months, 4 weeks agoDrTee
10 months agooluchecpoint
1 year, 2 months agoAlexJacobson
9 months, 4 weeks agokaranvp
1 year, 5 months agorichck102
1 year, 5 months ago