Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
I think the correct answer should be A. Decreased success rate of internal phishing tests.
D is wrong because an effective security awareness program rather leads to an increase in reported security incidents since the users now know better.
D. Decreased number of reported security incidents
The BEST indicator of an effective IT security awareness program is "D. Decreased number of reported security incidents." A decrease in the number of reported security incidents indicates that employees are becoming more aware of security practices, recognizing potential threats, and taking appropriate actions to prevent incidents. This suggests that the awareness program is successfully influencing employees' behavior and reducing the organization's vulnerability to security breaches.
Someone really needs to align the context of the questions with the manual as there are several examples in the content that state Increased number of reported security incidents is the best effective indicator of security awareness
A is correct. D is in correct. There was a similar question on the CISM QAE and the answer there was an increase (NOT DECREASE) in the number of security incident report.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Wedeyhere2
Highly Voted 3 years, 8 months agoRooks
3 years, 7 months agoStaanlee
Most Recent 8 months, 1 week agomraiyan
10 months, 2 weeks agojohn_boogieman
1 year, 1 month agoCeecil1959
1 year, 11 months agoRaj1510
2 years, 3 months agoGLin
2 years, 7 months agoTomm8125
3 years agoAnon530
3 years, 1 month agoCalvinc
3 years, 7 months agoParth9
3 years, 7 months ago