A Chief Information Security Officer (CISO) needs to create a policy set that meets international standards for
data privacy and sharing. Which of the following should the CISO read and understand before writing the
policies?
A. PCI DSS
B. GDPR
C. NIST
D. ISO 31000
data privacy and sharing. Which of the following should the CISO read and understand before writing the
policies?
A. PCI DSS
B. GDPR
C. NIST
D. ISO 31000