Certified Information Security Manager (CISM) — Question 148
Which of the following is necessary to ensure consistent protection for an organization’s information assets?
Answer options
- A. Control assessment
- B. Data ownership
- C. Regulatory requirements
- D. Classification mode
Correct answer: A
Explanation
The correct answer is A, as conducting a control assessment helps identify and evaluate the effectiveness of security measures in place. Options B, C, and D are important, but they do not directly ensure the consistent protection of information assets like a control assessment does.