C is a better choice than A because: If there are conflicts between IT and Security, it shows that policies and procedures are not aligned. Of course the steering committee can provide further guidance (answer A), but that does not tackle the root cause of the problem. Hence, answer C is more appropriate in this case.
Option C- Option A, which suggests that the steering committee provides guidance and dispute resolution, can also be important in addressing conflicts between performance pressures on IT and information security controls. However, it is not the MOST important action in this context.
While the steering committee can play a role in providing guidance and resolving disputes, it is ultimately more effective to establish a foundation where IT policies and procedures are better aligned to security policies.
important aspect is that the steering committee provides guidance and dispute resolution, it is important to have a clear and robust governance structure in place that can support IT and security teams in managing these conflicts.
upvoted 3 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Josef4CISM
1 week, 1 day agonuel_12
7 months, 1 week agoThavee
7 months, 2 weeks agohaskelatchi
9 months, 1 week agoSoleandheel
12 months agorichck102
1 year, 5 months agoSaisharan
1 year, 5 months agoBroesweelies
1 year, 9 months ago