CISA Certified Information Systems Auditor – Question1338

An organization has shifted from a bottom-up approach to a top-down approach in the development of IT policies. This should result in:

A.
a synthesis of existing operational policies
B. greater consistency across the organization
C. greater adherence to best practices
D. a more comprehensive risk assessment plan

Correct Answer: D