CISA Certified Information Systems Auditor – Question0586

An information systems security officer’s PRIMARY responsibility for business process applications is to:

A.
create role-based rules for each business process.
B. ensure access rules agree with policies.
C. authorize secured emergency access.
D. approve the organization’s security policy.

Correct Answer: B