Certified Information Security Manager (CISM) — Question 626
Which of the following is the MOST effective way to demonstrate alignment of information security strategy with business objectives?
Answer options
- A. Balanced scorecard
- B. Benchmarking
- C. Heat map
- D. Risk matrix
Correct answer: A
Explanation
The Balanced scorecard is the most effective tool for demonstrating alignment between information security strategy and business objectives because it provides a comprehensive framework that links performance metrics to strategic goals. In contrast, benchmarking focuses on comparing performance with peers, heat maps visualize risk levels, and risk matrices assess risk, but none directly link security strategy to business objectives as effectively as the Balanced scorecard.