Which of the following is a responsibility of an information security department manager?Provide information security awareness training to organization personnel. Creating and managing security strategies. Oversee information security audits, whether by performed by organization or third-party personnel. Manage security team members and all other information security personnel.
Is typically considered the top information security officer in the organization?The CISO (chief information security officer) is a senior-level executive responsible for developing and implementing an information security program, which includes procedures and policies designed to protect enterprise communications, systems and assets from both internal and external threats.
Which of the following information security roles is accountable for the day to day operation of the information security program?Security managers are accountable for the day-to-day operation of the information security program. The security manager position is much more general than that of the CISO. The position of security technician can be offered as an entry-level position.
What member of an organization should decide where the information security function?No one single person should decide on where the information security belongs within the organization. Within different departments there should be someone making decisions on where the information security function belongs depending on the need of that department's goals and resources.
|