CompTIA
CAS-002 · Question #290
CAS-002 Question #290: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-002 to reveal the answer and full explanation for question #290. The question stem and answer options stay visible for context.
Question
The Chief Information Officer (CIO) is focused on improving IT governance within the organization to reduce system downtime. The CIO has mandated that the following improvements be implemented: - All business units must now identify IT risks and include them in their business risk profiles. - Key controls must be identified and monitored. - Incidents and events must be recorded and reported with management oversight. - Exemptions to the information security policy must be formally recorded, approved, and managed. - IT strategy will be reviewed to ensure it is aligned with the businesses strategy and objectives. In addition to the above, which of the following would BEST help the CIO meet the requirements?
Options
- AEstablish a register of core systems and identify technical service owners
- BEstablish a formal change management process
- CDevelop a security requirement traceability matrix
- DDocument legacy systems to be decommissioned and the disposal process
Unlock CAS-002 to see the answer
You've previewed enough free CAS-002 questions. Unlock CAS-002 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.