Certified Information Systems Security Professional – CISSP – Question327

Which of the following would an internal technical security audit BEST validate?

A.
Whether managerial controls are in place
B. Support for security programs by executive management
C. Appropriate third-party system hardening
D. Implementation of changes to a system

Correct Answer: D