CertiProf I27001F Exam - Topic 3 Question 3 Discussion

Actual exam question for CertiProf's I27001F exam

Question #: 3
Topic #: 3

What does ISO/IEC 27001:2022 require in order for top management to demonstrate leadership and commitment with respect to the Information Security Management System?

AEnsuring that the information security policy and information security objectives are established and are compatible with the strategic direction of the organization

BHiring a consultancy to determine the best way to do it

CAppointing a volunteer to be responsible for the Information Security Management System

DNothing is required

Show Suggested Answer

Suggested Answer: A

ISO/IEC 27001:2022 requires top management to demonstrate leadership and commitment by ensuring that the information security policy and information security objectives are established and are compatible with the strategic direction of the organization. Top management must also integrate ISMS requirements into the organization's processes, ensure resources are available, support relevant roles, and promote continual improvement. The standard does not allow leadership accountability to be replaced by a consultant or a volunteer. Therefore, option A is correct.

=======

by Alpha at Apr 06, 2026, 12:59 AM

Limited Time Offer

25%

Off

Get Premium I27001F Questions as Interactive Web-Based Practice Test or PDF