CISSP – Information Systems Security Management Professional (ISSMP) — Question 60

You work as a security manager for SoftTech Inc. You are conducting a security awareness campaign for your employees. One of the employees of your organization asks you the purpose of the security awareness, training and education program. What will be your answer?

Answer options

• A. It improves the possibility for career advancement of the IT staff.
• B. It improves the security of vendor relations.
• C. It improves the performance of a company's intranet.
• D. It improves awareness of the need to protect system resources.

Correct answer: D

Explanation

The correct answer is D because the primary goal of a security awareness program is to educate employees about the significance of protecting system resources from potential threats. The other options focus on unrelated aspects such as career advancement, vendor security, and intranet performance, which do not directly relate to the purpose of security awareness training.