CISM Question #443: Real Exam Question with Answer & Explanation

The correct answer is A: Helping ensure mitigation efforts are implemented and maintained. Assigning control ownership to specific individuals ensures accountability for implementing, monitoring, and maintaining security controls. This improves compliance, risk management, and security posture by ensuring that controls are properly managed over time. While streamlining

Submitted by satoshi_tk· Apr 18, 2026Information Security Governance

Question

Which of the following is the PRIMARY benefit of assigning control ownership to specific individuals?

Options

AHelping ensure mitigation efforts are implemented and maintained
BEliminating the need for security awareness training
CReducing the need for security policies and procedures
DStreamlining control testing and reporting

Explanation

Assigning control ownership to specific individuals ensures accountability for implementing, monitoring, and maintaining security controls. This improves compliance, risk management, and security posture by ensuring that controls are properly managed over time. While streamlining testing, reducing training needs, or eliminating policies might be secondary effects, the primary benefit is ensuring that mitigation efforts are consistently applied and maintained.

Topics

#Control Ownership#Accountability#Risk Mitigation#Information Security Governance

Community Discussion

No community discussion yet for this question.

Full CISM Practice Browse All CISM Questions