CISA Certified Information Systems Auditor – Question0646

To integrate security into system development life cycle (SDLC) processes, an organization MUST ensure that security:

A.
is a prerequisite for completion of major phases.
B. performance metrics have been met.
C. roles and responsibilities have been defined.
D. is represented on the configuration control board.

Correct Answer: A