CISM Certified Information Security Manager – Question1007

An information security manager learns of a new international standard related to information security.
Which of the following would be the BEST course of action?

A.
Review industry peers’ responses to the new standard.
B. Consult with legal counsel on the standard’s applicability to regulations.
C. Determine whether the organization can benefit from adopting the new standard.
D. Perform a gap analysis between the new standard and existing practices.

Correct Answer: C