Systems Security Certified Practitioner (SSCP) — Question 92
Who is responsible for initiating corrective measures and capabilities used when there are security violations?
Answer options
- A. Information systems auditor
- B. Security administrator
- C. Management
- D. Data owners
Correct answer: C
Explanation
Management is responsible for initiating corrective measures when security violations happen, as they oversee the overall security policies and procedures. While the other roles may assist in identifying issues or implementing policies, it is ultimately management that makes the decisions regarding corrective actions.