Certified Information Systems Security Professional – CISSP – Question162

Who would be the BEST person to approve an organizations information security policy?

A.
Chief Information Officer (CIO)
B. Chief Information Security Officer (CISO)
C. Chief internal auditor
D. Chief Executive Officer (CEO)

Correct Answer: B