Skillset can help you prepare! Sign up for your free Skillset account and take the first steps towards your certification.
What should be the main focus of assurance for an IT auditor when assessing the development of information security policies?
Are in agreement with globally accepted industry best practices.
Aligned with both business and legal requirements.
Approval by the board of directors and senior management.
Provide direction for deployment of security procedures.
Information security policies must be first aligned with an organization's objectives. Best practices are adopted based on the business objectives. It is essential that policies be approved; however, that is not the primary focus during development. Policies cannot provide direction if they are not aligned with business requirements. ********** Basically Information Security policy is approved by board of directors and senior management. And its understandable that they are aligned with business objectives otherwise they won't get approval. Answer should be "Approval by the board of directors and senior management"***************
They also must have approval. Vague answers
Study thousands of practice questions that organized by skills and ranked by difficulty.
Create a tailored training plan based on the knowledge you already possess.
Know when you’re ready for the high-stakes exam. Have the confidence that you will pass on your first attempt.