Certified Chief Information Security Officer (CCISO) — Question 34

Scenario: Most industries require compliance with multiple government regulations and/or industry standards to meet data protection and privacy mandates.
What is one proven method to account for common elements found within separate regulations and/or standards?

Answer options

• A. Design your program to meet the strictest government standards
• B. Develop a crosswalk
• C. Hire a GRC expert
• D. Use the Find function of your word processor

Correct answer: B

Explanation

Developing a crosswalk is an effective way to map and compare the common elements in different regulations and standards, allowing organizations to streamline their compliance efforts. Designing a program to meet the strictest standards may lead to unnecessary complexity and cost. Hiring a GRC expert can be beneficial, but it doesn't directly address the commonality aspect. Using the Find function of a word processor is not a structured method for compliance management.