Certified Information Security Manager (CISM) — Question 290

The MOST important information for influencing management's support of information security is:

Answer options

• A. a report of a successful attack on a competitor.
• B. a demonstration of alignment with the business strategy.
• C. an identification of the overall threat landscape.
• D. an identification of organizational risks.

Correct answer: B

Explanation

Demonstrating alignment with the business strategy (option B) is crucial because it shows that information security efforts support the organization's goals, making it more likely for management to invest in them. The other options, while relevant, do not directly link security initiatives to business objectives, which is essential for gaining management's backing.