CERTIFIED-IN-CYBERSECURITY · Question #214
CERTIFIED-IN-CYBERSECURITY Question #214: Real Exam Question with Answer & Explanation
The correct answer is A: Informs users of company expectations when they use computer systems and networks. An Acceptable Use Policy (AUP) is a set of rules that informs users of the company's expectations when they use its computer systems and networks (see ISC2 Study Guide, Module 5, chapter 5). AUPs are designed to protect an organization by limiting access to specific devices/areas
Question
What is the main purpose of an Acceptable Use Policy (AUP)?
Options
- AInforms users of company expectations when they use computer systems and networks
- BEnsure the security of the organization's network and computer systems
- CTo provide guidelines when choosing your corporate password
- DTo monitor the use of the organization's network and computer systems
Explanation
An Acceptable Use Policy (AUP) is a set of rules that informs users of the company's expectations when they use its computer systems and networks (see ISC2 Study Guide, Module 5, chapter 5). AUPs are designed to protect an organization by limiting access to specific devices/areas, such as applications and databases, and by specifying various policies and standards the users must adhere to. Ensuring the security of the organization's network and computer systems is a goal of an AUP, but it is not the main purpose. Providing guidelines when choosing a corporate password is not the main purpose of an AUP, as this is typically covered in a separate policy. Monitoring the use of the organization's network and computer systems is not the main purpose of an AUP, as this is typically covered in a separate policy
Topics
Community Discussion
No community discussion yet for this question.