CISA Certified Information Systems Auditor – Question0653

Which of the following is MOST effective in the strategic alignment of security initiatives?

A.
A security steering committee is set up within the IT department.
B. Key information security policies are updated on a regular basis.
C. Business leaders participate in information security decision making.
D. Policies are created with input from business unit managers.

Correct Answer: D