Certified Information Systems Auditor (CISA) — Question 64

An organization implemented a cybersecurity policy last year. Which of the following is the GREATEST indicator that the policy may need to be revised?

Answer options

• A. A significant increase in authorized connections to third parties
• B. A significant increase in cybersecurity audit findings
• C. A significant increase in external attack attempts
• D. A significant increase in approved exceptions

Correct answer: D

Explanation

The correct answer is D, as a significant increase in approved exceptions indicates that the existing policy may not be effectively addressing current risks, leading to more deviations from standard practices. Options A, B, and C, while concerning, do not inherently suggest that the policy itself is inadequate; rather, they may reflect the evolving threat landscape or operational changes.