I will go with B here; Reason: the question asks about desired outcome of information security governance which doesn't necessarily mean improved risk management as risk management will encompass more that IT Security, there will be other risks like supply chain, vendor risk and it will not only involve IT or IT Security. Business agility involves more than IT and IT security, if the product delivered by the business is rock solid and better than competitors then IT and IT security may aid to that achievement but not solely the main responsibility for business agility. A maturity model will provide the current state and the future state we want to get to by the process of continuious improvement which is governance.
A Business Agility
Business Agility is a people-centred, organisation-wide capability that enables a business to deliver value to a world characterised by ever-increasing volatility, uncertainty, complexity, and ambiguity.
C. Improved risk management.
Information security governance is the framework and processes implemented to ensure that information security aligns with business objectives, manages risks effectively, and supports organizational goals. One of the key objectives of information security governance is to improve risk management practices.
C. Improved risk management.
One of the desired outcomes of information security governance is improved risk management. Effective information security governance helps organizations to better understand and manage the risks that they face, and to implement appropriate controls and procedures to mitigate those risks. This helps to ensure that the organization's information assets are protected, and that the organization is better positioned to respond to security incidents. Other outcomes of information security governance, such as penetration testing, a maturity model, and business agility, may be important as well, but they are not as directly related to the goal of improved risk management.
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.CISM Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
yottabyte
7 months agowickhaarry
1 year, 1 month agooluchecpoint
1 year, 1 month agorichck102
1 year, 3 months agokaranvp
1 year, 4 months agomad68
1 year, 5 months agobambs
1 year, 7 months agoit_expert_cism
1 year, 7 months agoSouvik124
1 year, 8 months agoBroesweelies
1 year, 8 months ago