CERTIFIED-IN-CYBERSECURITY · Question #220
CERTIFIED-IN-CYBERSECURITY Question #220: Real Exam Question with Answer & Explanation
The correct answer is A: Regulations. Regulations are typically developed by governments or industry regulators and are legally binding (see ISC2 Study Guide, Module 4, under Governance Elements). They enforce specific requirements for cybersecurity and can carry penalties for non- compliance. Standards outline best
Question
Which of the following documents is developed by governments or industry regulators to enforce specific requirements for cybersecurity?
Options
- ARegulations
- BProcedures
- CPolicies
- DStandards
Explanation
Regulations are typically developed by governments or industry regulators and are legally binding (see ISC2 Study Guide, Module 4, under Governance Elements). They enforce specific requirements for cybersecurity and can carry penalties for non- compliance. Standards outline best practices for cybersecurity, such as ISO 27001. Regulations are typically more stringent than standards, as they are legally binding and must be followed. Policies such as acceptable use and password policies outline an organization's desired behavior. Procedures outline the steps required to complete a task, such as a procedure for patching systems.
Topics
Community Discussion
No community discussion yet for this question.