Which of the following would provide the BEST assurance that the third party's contract programmers comply with the organization's security policies?

Posted by: Pdfprep Category: CISM Tags: Isaca Certificaton, CISM exam questions, CISM practice exam Post Date: December 14, 2020

An organization has outsourced many application development activities to a third party that uses contract programmers extensively.

Which of the following would provide the BEST assurance that the third party’s contract programmers comply with the organization’s security policies?
A . Require annual signed agreements of adherence to security policies.
B . Include penalties for noncompliance in the contracting agreement.
C . Perform periodic security assessments of the contractors’ activities.
D . Conduct periodic vulnerability scans of the application.

Answer: C

Which of the following would provide the BEST assurance that the third party’s contract programmers comply with the organization’s security policies?

Author

Leave a Reply Cancel reply