Scenario: You are the newly hired Chief Information Security Officer for a company that has not previously had a senior level security practitioner. The company lacks a defined security policy and framework for their Information Security Program. Your new boss, the Chief Financial Officer, has asked you to draft an outline of a security policy and recommend an industry/sector neutral information security control framework for implementation. Which of the following industry / sector neutral information security control frameworks should you recommend for implementation?
A) Payment Card Industry Digital Security Standard (PCI DSS)
B) National Institute of Standards and Technology (NIST) Special Publication 800-53
C) International Organization for Standardization - ISO 27001/2
D) British Standard 7799 (BS7799)
Correct Answer:
Verified
Q185: Bob waits near a secured door, holding
Q186: You are just hired as the new
Q187: Scenario: Most industries require compliance with multiple
Q188: Scenario: Your organization employs single sign-on (user
Q189: Scenario: Critical servers show signs of erratic
Q191: Which type of scan is used on
Q192: Scenario: Your company has many encrypted telecommunications
Q193: Scenario: An organization has recently appointed a
Q194: Scenario: Critical servers show signs of erratic
Q195: Scenario: A CISO has several two-factor authentication
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents