Some organizations have information protection policies that place the burden of information protection on managers in individual organizational units. An information protection policy may include:
A) Statements that define information as an asset that must be protected to different degrees based on its sensitivity, criticality, and value, regardless of the media on which it is stored, the manual or automated systems that process it, or the methods by which it is distributed
B) Statements outlining the responsibilities of information owners, custodians and users
C) Definitions of the previously audited data and its classifications
D) Both A & B
Correct Answer:
Verified
Q323: At the end of the day all
Q324: Obtaining feedback from client management throughout the
Q325: The reliability (competence) of evidence gathered by
Q326: Bank may serve as trustee or custodian
Q327: Cash on hand refers to:
A) Funds in
Q329: Information technology general controls set the foundation
Q330: If participation rate in an equity indexed
Q331: A bank may serve as _ for
Q332: An objective of an exit conference is
Q333: Workpapers serve as the connecting link between
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents