An IS auditor finds that not all employees are aware of the enterprises information security policy. The IS au

adminJanuary 30, 2019

An IS auditor finds that not all employees are aware of the enterprises information security policy. The IS auditor should conclude that:

A. this lack of knowledge may lead to unintentional disclosure of sensitive information.

B. information security is not critical to all functions.

C. IS audit should provide security training to the employees.

D. the audit finding will cause management to provide continuous training to staff.

Explanation:

All employees should be aware of the enterprises information security policy to prevent unintentional disclosure of sensitive information. Training is a preventive control. Security awareness programs for employees can prevent unintentional disclosure of sensitive information to outsiders.

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

ISACA Exam Questions

Free ISACA Study Guide

An IS auditor finds that not all employees are aware of the enterprises information security policy. The IS au

Leave a Reply Cancel reply