CISM Certified Information Security Manager – Question0220

Which of the following is a PRIMARY responsibility of an information security steering committee?

A.
Reviewing the information security strategy
B. Approving the information security awareness training strategy
C. Analyzing information security policy compliance reviews
D. Approving the purchase of information security technologies

Correct Answer: A