Certified Information Security Manager (CISM) — Question 23

Which of the following is the MOST important consideration when selecting members for an information security steering committee?

Answer options

• A. Information security expertise
• B. Tenure in the organization
• C. Business expertise
• D. Cross-functional composition

Correct answer: D

Explanation

The most crucial factor is cross-functional composition, as it ensures diverse perspectives and expertise are represented, leading to more effective decision-making. While information security expertise, tenure, and business expertise are valuable, they do not replace the need for a well-rounded committee that can address various aspects of information security.