Periodically reviewing controls to verify that they still function as intended, upgrading controls when new requirements are discovered, ensuring that changes to systems do not adversely affect the controls, and ensuring new threats or vulnerabilities have not become known are all ________ tasks.
A) security compliance
B) maintenance
C) incident handling
D) program management

Question

Quizplus · Accepted Answer

These are all maintenance tasks, specifically related to maintaining the effectiveness of controls over time. Security compliance involves meeting regulatory or policy requirements, incident handling involves responding to security incidents, and program management involves managing the overall security program.

Periodically Reviewing Controls to Verify That They Still Function as Intended