CISM Certified Information Security Manager – Question0606

What is the MOST important consideration when establishing metrics for reporting to the information security strategy committee?

A.
Agreeing on baseline values for the metrics
B. Developing a dashboard for communicating the metrics
C. Providing real-time insight on the security posture of the organization
D. Benchmarking the expected value of the metrics against industry standards

Correct Answer: A