nerdexam
EC-Council

512-50 · Question #5

512-50 Question #5: Real Exam Question with Answer & Explanation

The correct answer is B. Lack of a formal security policy governance process. See the full explanation below for the reasoning.

Question

A security professional has been promoted to be the CISO of an organization. The first task is to create a security policy for this organization. The CISO creates and publishes the security policy. This policy however, is ignored and not enforced consistently. Which of the following is the MOST likely reason for the policy shortcomings?

Options

  • ALack of a formal security awareness program
  • BLack of a formal security policy governance process
  • CLack of formal definition of roles and responsibilities
  • DLack of a formal risk management policy

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 512-50 Practice