CISA Certified Information Systems Auditor – Question2370

Which of the following is the MOST effective approach for integrating security into application development?

A.
Including security in user acceptance testing sign-off
B. Performing vulnerability scans
C. Developing security models in parallel
D. Defining security requirements

Correct Answer: D