Certified Information Security Manager (CISM) — Question 14

Which of the following is the BEST strategy to implement an effective operational security posture?

Answer options

• A. Increased security awareness
• B. Defense in depth
• C. Threat management
• D. Vulnerability management

Correct answer: B

Explanation

The correct answer is B, Defense in depth, as it involves multiple layers of security controls to protect assets, making it harder for attackers to penetrate. While increased security awareness, threat management, and vulnerability management are important, they do not provide the comprehensive protection that a layered defense strategy offers.