CISM Certified Information Security Manager – Question1061

The GREATEST benefit of using a maturity model when providing security reports to management is that it presents the:

A.
security program priorities to achieve an accepted risk level
B. level of compliance with internal policy
C. assessed level of security risk at a particular point in time
D. current and target security state for the business

Correct Answer: D