CISA Certified Information Systems Auditor – Question1341

Adding security requirements late in the software development life cycle would MOST likely result in:

A.
cost savings
B. clearer understanding of requirements
C. operational efficiency
D. compensating controls

Correct Answer: D