PECB Lead Implementer (ISO/IEC 27001) — Question 8

Which of the following is the information security committee responsible for?

Answer options

• A. Ensure smooth running of the ISMS
• B. Set annual objectives and the ISMS strategy
• C. Treat the nonconformities

Correct answer: A

Explanation

The information security committee's primary responsibility is to ensure the smooth operation of the Information Security Management System (ISMS). While setting annual objectives and handling nonconformities are important, they fall under broader organizational functions rather than the specific role of the committee.