As part of an organization's information security governance process, a Chief Information Security Officer (CISO) is working with the compliance officer to update policies to include statements related to new regulatory and legal requirements. Which of the following should be done to BEST ensure all employees are appropriately aware of changes to the policies?
A) Conduct a risk assessment based on the controls defined in the newly revised policies
B) Require all employees to attend updated security awareness training and sign an acknowledgement
C) Post the policies on the organization's intranet and provide copies of any revised policies to all active vendors
D) Distribute revised copies of policies to employees and obtain a signed acknowledgement from them
Correct Answer:
Verified
Q71: A security analyst recently discovered two unauthorized
Q72: Which of the following is the MOST
Q73: A security manager has asked an analyst
Q74: While preparing for an audit of information
Q75: A web-based front end for a business
Q77: A security analyst is reviewing the following
Q78: Clients are unable to access a company's
Q79: A company wants to establish a threat-hunting
Q80: A security analyst discovers accounts in sensitive
Q81: A security analyst is reviewing packet captures
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents