CompTIA Security+ (SY0-701) — Question 501

A Chief Information Security Officer (CISO) has developed information security policies that relate to the software development methodology. Which of the following would the CISO most likely include in the organization’s documentation?

Answer options

• A. Peer review requirements
• B. Multifactor authentication
• C. Branch protection tests
• D. Secrets management configurations

Correct answer: A

Explanation

The correct answer is A because peer review requirements are an essential component of ensuring code quality and security during the software development process. The other options, while important, pertain more to security implementation rather than specific policies related to the development methodology.