CISA Certified Information Systems Auditor – Question0829

Which of the following is MOST important for the successful establishment of a security vulnerability management program?

A.
A comprehensive asset inventory
B. A tested incident response plan
C. An approved patching policy
D. A robust tabletop exercise plan

Correct Answer: C