Certified Information Security Manager (CISM) — Question 561

A corporate information security program is BEST positioned for success when:

Answer options

• A. staff is receptive to the program.
• B. senior management supports the program.
• C. security is thoroughly assessed in the program.
• D. the program aligns with industry best practice.

Correct answer: B

Explanation

The correct answer is B, as senior management support is crucial for securing resources and prioritizing information security within the organization. While staff receptiveness, thorough assessments, and alignment with best practices are important, without backing from upper management, the program is likely to face challenges in implementation and sustainability.