CISM Certified Information Security Manager – Question1239

Which of the following is the MOST important consideration when establishing an information security governance framework?

A.
Security steering committee meetings are held at least monthly.
B. Members of the security steering committee are trained in information security.
C. Business unit management acceptance is obtained.
D. Executive management support is obtained.

Correct Answer: D