Certified Information Security Manager (CISM) — Question 1054

Which of the following is the MOST relevant control to address the integrity of information?

Answer options

• A. Implementation of a redundant server system
• B. Encryption of email
• C. Implementation of an Internet security application
• D. Assignment of appropriate access permissions

Correct answer: D

Explanation

The correct answer is D, as assigning appropriate access permissions directly controls who can modify or access information, thereby ensuring its integrity. The other options, while important for overall security, do not specifically focus on maintaining the integrity of information.