ISC2 Exam ISSEP Topic 1 Question 73 Discussion

Actual exam question for ISC2's Information Systems Security Engineering Professional exam

Question #: 73
Topic #: 1

[All Information Systems Security Engineering Professional Questions]

Which of the following individuals are part of the senior management and are responsible for authorization of individual systems, approving enterprise solutions, establishing security policies, providing funds, and maintaining an understanding of risks at all levels? Each correct answer represents a complete solution. Choose all that apply.

AChief Information Officer

BAO Designated Representative

CSenior Information Security Officer

DUser Representative

EAuthorizing Official

Show Suggested Answer

Suggested Answer: A, B, C, E

Authorizing Official, AO Designated Representative (AODR), Chief Information Officer (CIO), and

Senior Information Security Officer (SISO) are part of the senior management. These individuals are

responsible for the following:

Authorization of individual systems

Approving enterprise solutions

Establishing security policies

Providing funds

Maintaining an understanding of risk at all levels

Answer option D is incorrect. A User Representative is not a part of the senior management in the

Authorization process.

by Becky at Sep 02, 2023, 10:39 PM

Limited Time Offer

25%

Off

Get Premium ISSEP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!