Which of the following should an information security manager do NEXT after creating a roadmap to execute the strategy for an information security program?
A.
Develop a project plan to implement the strategy
B.
Obtain consensus on the strategy from the executive board
The answer of A creating a roadmap is developing the project plan which will indicate that it is done already, the next step is to align them to business goals.
Plan to implement strategy is the correct answer. Alignment to business goals should already be done during the creation of the program. After program creation, the next important thing is to create a plan to implement.
After the strategy and roadmap are developed, we must seek management/board approval. Once the approval is received, we present a business case to seek funding to implement the strategy. We may include a high-level project plan in the BC. The review of BC will be based on its alignment with the business goals which must be considered early in the development of strategy objectives. Risk tolerance is also defined during strategy development.
D. Review alignment with business goals
Before diving into the implementation details (option A), obtaining consensus from the executive board (option B), or defining organizational risk tolerance (option C), it is crucial to ensure that the information security strategy aligns with the overall business goals and objectives. This step helps ensure that the security program will support and enhance the organization's mission and priorities, making it more likely to receive support from senior management (option B) and to effectively manage risks (option C).
T3.2 Align the information security program with the operational objectives of other business functions (e.g., human resources [HR], accounting, procurement and IT) to ensure that the information security program adds value to and protects the business.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
karanvp
Highly Voted 1 year, 4 months agoaokisan
Highly Voted 1 year, 11 months agoBooict
Most Recent 2 months, 2 weeks ago03allen
5 months, 1 week agoyottabyte
8 months agooluchecpoint
9 months, 2 weeks agoPOWNED
10 months agoSoleandheel
12 months agoCISSPST
1 year, 1 month agooluchecpoint
1 year, 2 months agooluchecpoint
9 months, 2 weeks agoGoseu
1 year, 4 months agorichck102
1 year, 4 months agomad68
1 year, 6 months agoBroesweelies
1 year, 9 months agoMyKasala
1 year, 10 months ago