CISM Certified Information Security Manager – Question0167

Which of the following is the MOST effective way for senior management to support the integration of information security governance into corporate governance?

A.
Develop the information security strategy based on the enterprise strategy.
B. Appoint a business manager as heard of information security.
C. Promote organization-wide information security awareness campaigns.
D. Establish a steering committee with representation from across the organization.

Correct Answer: A