Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

CertiProf I27001F Exam - Topic 3 Question 4 Discussion

Actual exam question for CertiProf's I27001F exam
Question #: 4
Topic #: 3
[All I27001F Questions]

The information security policy must be known by:

Show Suggested Answer Hide Answer
Suggested Answer: D

ISO/IEC 27001:2022 requires the information security policy to be available as documented information, communicated within the organization, and available to interested parties as appropriate. In practical terms, this means the policy must be communicated to relevant persons in the organization so they understand the direction and expectations related to information security. Among the options provided, the best and correct answer is D, because the policy is intended to be known broadly across the organization, not restricted to a single role or department.


by Alishia at Apr 02, 2026, 07:58 PM

Limited Time Offer

25%

Off

Get Premium I27001F Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Alex
4 days ago
I feel like the quality management representative should know it too, but I lean towards option D. Everyone needs to be aware of security policies!
upvoted 0 times
...
Rosalind
9 days ago
I’m not entirely sure, but I remember a practice question that emphasized the role of the IT Security Manager. Maybe they are the key person?
upvoted 0 times
...
Eliseo
14 days ago
I think the policy should be known by everyone in the organization, right? It’s important for all employees to understand security protocols.
upvoted 0 times
...

Save Cancel