Certified Chief Information Security Officer (CCISO) — Question 140

Which of the following set of processes is considered to be one of the cornerstone cycles of the International Organization for Standardization (ISO) 27001 standard?

Answer options

• A. Plan-Check-Do-Act
• B. Plan-Select-Implement-Evaluate
• C. Plan-Do-Check-Act
• D. SCORE (Security Consensus Operational Readiness Evaluation)

Correct answer: C

Explanation

The correct answer, 'Plan-Do-Check-Act', is a widely accepted management method that aligns with the ISO 27001 framework. The other options, while related to management processes, do not accurately represent the specific terminology used in ISO 27001.