Certified Information Security Manager (CISM) — Question 1038
A proposal designed to gain buy-in from senior management for a new security project will be MOST effective if it includes:
Answer options
- A. historical data of reported incidents.
- B. analysis of current threat landscape.
- C. industry benchmarking gap analysis.
- D. projected return on investment (ROI).
Correct answer: D
Explanation
Including projected return on investment (ROI) is crucial as it demonstrates the financial benefits of the security project, making it more appealing to senior management. While historical data, threat landscape analysis, and benchmarking are valuable, they do not directly address the financial impact which is often a key concern for executives.