Certified Information Security Manager (CISM) — Question 9

The MAIN purpose of influenced by a business impact guideline for use within a large, international organization is to:

Answer options

• A. explain the organization's preferred practices for security.
• B. ensure that all business units have the same strategic security goals.
• C. ensure that all business units implement identical security procedures.
• D. provide evidence for auditors that security practices are adequate.

Correct answer: B

Explanation

The correct answer is B because the guideline aims to align the strategic security goals across all business units, ensuring a cohesive approach. Options A, C, and D, while relevant to security practices, do not focus specifically on the alignment of strategic objectives among business units, which is the main intent of the guideline.