PrepAway - Latest Free Exam Questions & Answers

which level of ranking in the information security gove…

In an organization, the responsibilities for IT security are clearly assigned and enforced and an IT security risk
and impact analysis is consistently performed. This represents which level of ranking in the information security
governance maturity model?

PrepAway - Latest Free Exam Questions & Answers

A.
Optimized

B.
Managed

C.
Defined

D.
Repeatable

Explanation:
Boards of directors and executive management can use the information security governance maturity model to
establish rankings for security in their organizations. The ranks are nonexistent, initial, repeatable, defined,
managed and optimized. When the responsibilities for IT security in an organization are clearly assigned and
enforced and an IT security risk and impact analysis is consistently performed, it is said to be ‘managed and
measurable.’


Leave a Reply