ISC2 Exam CSSLP Topic 3 Question 4 Discussion

Actual exam question for ISC2's Certified Secure Software Lifecycle Professional exam

Question #: 4
Topic #: 3

[All Certified Secure Software Lifecycle Professional Questions]

Which of the following individuals inspects whether the security policies, standards, guidelines, and procedures are efficiently performed in accordance with the company's stated security objectives?

AInformation system security professional

BData owner

CSenior management

DInformation system auditor

Show Suggested Answer

Suggested Answer: D

An information system auditor is an individual who inspects whether the security policies, standards, guidelines, and procedures are efficiently

performed in accordance with the company's stated security objectives. He is responsible for reporting the senior management about the

value of security controls by performing regular and independent audits.

Answer B is incorrect. A data owner determines the sensitivity or classification levels of data.

Answer A is incorrect. An informational systems security professional is an individual who designs, implements, manages, and reviews

the security policies, standards, guidelines, and procedures of the organization. He is responsible to implement and maintain security by the

senior-level management.

Answer C is incorrect. A senior management assigns overall responsibilities to other individuals.

by Arthur at May 03, 2022, 07:12 PM

Limited Time Offer

25%

Off

Get Premium CSSLP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!