Certified Information Security Manager (CISM) — Question 532

The BEST way to report to the board on the effectiveness of the information security program is to present:

Answer options

• A. a summary of the most recent audit findings.
• B. a report of cost savings from process improvements.
• C. peer-group industry benchmarks.
• D. a dashboard illustrating key performance metrics.

Correct answer: D

Explanation

Presenting a dashboard illustrating key performance metrics (D) provides a clear, visual representation of the program's effectiveness, making it easier for the board to understand. While the other options offer valuable insights, they do not provide a comprehensive overview of performance metrics as effectively as a dashboard does.