Which of the following is the MOST effective way for an information security manager to ensure that security is incorporated into an organization's project development processes?
A.
Develop good communications with the project management office (PMO).
B.
Participate in project initiation, approval, and funding.
C.
Conduct security reviews during design, testing, and implementation.
D.
Integrate organization's security requirements into project management.
By integrating security requirements into the overall project management processes, the organization ensures that security considerations are woven into every stage of the project lifecycle. This includes project initiation, planning, execution, monitoring, and closure. It involves embedding security into project requirements, design, testing, implementation, and ongoing maintenance. This approach promotes a proactive and holistic approach to security within the project development processes.
While developing good communications with the project management office (PMO) (option A), participating in project initiation, approval, and funding (option B), and conducting security reviews during design, testing, and implementation (option C) are important activities, integrating security requirements directly into project management processes is the overarching strategy that influences and guides these activities.
D is the most effective because its farther reaching than C.
upvoted 4 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
OlaYiMiKa
3 months, 3 weeks agoViperhunter
1 year agorichck102
1 year, 6 months agoAntonivs
1 year, 10 months agoMSKid
2 years, 1 month ago