CompTIA
CAS-003 · Question #179
CAS-003 Question #179: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-003 to reveal the answer and full explanation for question #179. The question stem and answer options stay visible for context.
Question
The Information Security Officer (ISO) is reviewing new policies that have been recently made effective and now apply to the company. Upon review, the ISO identifies a new requirement to implement two-factor authentication on the company's wireless system. Due to budget constraints, the company will be unable to implement the requirement for the next two years. The ISO is required to submit a policy exception form to the Chief Information Officer (CIO). Which of the following are MOST important to include when submitting the exception form? (Select THREE).
Options
- ABusiness or technical justification for not implementing the requirements.
- BRisks associated with the inability to implement the requirements.
- CIndustry best practices with respect to the technical implementation of the current controls.
- DAll sections of the policy that may justify non-implementation of the requirements.
- EA revised DRP and COOP plan to the exception form.
- FInternal procedures that may justify a budget submission to implement the new requirement.
- GCurrent and planned controls to mitigate the risks.
Unlock CAS-003 to see the answer
You've previewed enough free CAS-003 questions. Unlock CAS-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.