Certified Information Systems Security Professional – CISSP – Question028

Which factors MUST be considered when classifying information and supporting assets for risk management, legal discovery, and compliance?

A.
System owner roles and responsibilities, data handling standards, storage and secure development lifecycle requirements
B. Data stewardship roles, data handling and storage standards, data lifecycle requirements
C. Compliance office roles and responsibilities, classified material handling standards, storage system lifecycle requirements
D. System authorization roles and responsibilities, cloud computing standards, lifecycle requirements

Correct Answer: A