Which of the following is the BEST approach for encouraging business units to assume their roles and responsibilities in an information security program?
A.
Engage an independent security audit.
B.
Perform a risk assessment.
C.
Conduct an awareness program for senior management.
Weird wording - but I guess the question asks about how to create awareness for information security. You can do so by creating awareness starting from the senior management and continue to lower organizational levels.
When senior management is aware and supportive, they can effectively communicate the importance of information security to their respective business units, fostering a culture of security throughout the organization
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Josef4CISM
1 month, 1 week agoBooict
2 months, 3 weeks agoServerBrain
4 months, 1 week agoMMK777
5 months, 4 weeks agopgonza
6 months agoEvedzy
6 months ago