CISM Certified Information Security Manager – Question0211

Which of the following is the PRIMARY reason an information security strategy should be deployed across an organization?

A.
To ensure that the business complies with security regulations
B. To ensure that management's intent is reflected in security activities
C. To ensure that employees adhere to security standards
D. To ensure that security-related industry best practices are adopted

Correct Answer: A