Certified Information Security Manager (CISM) — Question 326
Which of the following BEST conveys minimum information security requirements to an organization in alignment with policies?
Answer options
- A. Procedures
- B. Regulations
- C. Baselines
- D. Standards
Correct answer: D
Explanation
The correct answer is D, Standards, as they provide specific minimum requirements for information security that align with an organization's policies. Procedures and baselines offer guidance and implementation details, while regulations are broader legal requirements that may not directly convey minimum security needs.