CISA Certified Information Systems Auditor – Question0460

Which of the following is the MOST important factor when an organization is developing information security policies and procedures?

A.
Cross-references between policies and procedures
B. Inclusion of mission and objectives
C. Compliance with relevant regulations
D. Consultation with management

Correct Answer: C