It is not critical that an organization's IT security policy have fullapproval or buy-in by senior management.

Question

Quizplus · Accepted Answer

It is critical that an organization's IT security policy have full approval and buy-in by senior management because they are responsible for providing the necessary resources and support to ensure the policy is implemented and enforced effectively throughout the organization. Without their support, the policy may not be taken seriously by employees and may not be effectively enforced, leaving the organization vulnerable to security breaches and other risks.

It Is Not Critical That an Organization's IT Security Policy