Scenario: An organization has recently appointed a CISO. This is a new role in the organization and it signals the increasing need to address security consistently at the enterprise level. This new CISO, while confident with skills and experience, is constantly on the defensive and is unable to advance the IT security centric agenda. The CISO has been able to implement a number of technical controls and is able to influence the Information Technology teams but has not been able to influence the rest of the organization. From an organizational perspective, which of the following is the LIKELY reason for this?
A) The CISO reports to the IT organization
B) The CISO has not implemented a policy management framework
C) The CISO does not report directly to the CEO of the organization
D) The CISO has not implemented a security awareness program
Correct Answer:
Verified
Q188: Scenario: Your organization employs single sign-on (user
Q189: Scenario: Critical servers show signs of erratic
Q190: Scenario: You are the newly hired Chief
Q191: Which type of scan is used on
Q192: Scenario: Your company has many encrypted telecommunications
Q194: Scenario: Critical servers show signs of erratic
Q195: Scenario: A CISO has several two-factor authentication
Q196: Scenario: Your organization employs single sign-on (user
Q197: Scenario: A Chief Information Security Officer (CISO)
Q198: Scenario: An organization has made a decision
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents