CISM Certified Information Security Manager – Question0186

Which of the following is the BEST approach for an information security manager when developing new information security policies?

A.
Create a stakeholder map.
B. Reference an industry standard.
C. Establish an information security governance committee.
D. Download a policy template.

Correct Answer: C