As an outcome of information security governance, strategic alignment provides:
A . security requirements driven by enterprise requirements.
B . baseline security following best practices.
C . institutionalized and commoditized solutions.
D . an understanding of risk exposure.
Answer: A
Explanation:
Information security governance, when properly implemented, should provide four basic outcomes: strategic alignment, value delivery, risk management and performance measurement. Strategic alignment provides input for security requirements driven by enterprise requirements. Value delivery provides a standard set of security practices, i.e., baseline security following best practices or institutionalized and commoditized solutions. Risk management provides an understanding of risk exposure.
Leave a Reply