An organization has purchased an Internet sales company to extend the sales department. The information security manager's FIRST step to ensure the security policy framework encompasses the new business model is to:
Performing a gap analysis is the first step in identifying any discrepancies or deficiencies in the current security policy framework, as well as determining any additional measures that may be necessary to ensure the security of the new business model. By comparing the existing security policies with the requirements of the new business model, the information security manager can identify any gaps or areas of non-compliance, and take steps to address them before the new business model is implemented. This will help to ensure that the overall security of the organization is not compromised by the new business model.
upvoted 3 times
...
This section is not available anymore. Please use the main Exam Page.CISM Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Agamennore
11 months, 3 weeks agorichck102
1 year, 1 month agoBroesweelies
1 year, 6 months ago