CISM Certified Information Security Manager – Question1045

Which of the following is MOST important to include in a contract with a critical service provider to help ensure alignment with the organization’s information security program?

A.
Right-to-audit clause
B. Escalation paths
C. Key performance indicators (KPIs)
D. Termination language

Correct Answer: C