nerdexam
Isaca

CISM · Question #751

CISM Question #751: Real Exam Question with Answer & Explanation

The correct answer is C. Ensuring policies facilitate business practices. The primary role of the information security steering committee in developing security policies is to ensure that policies support and facilitate business practices. Their responsibility is to align security initiatives with business objectives, balancing protection with operatio

Submitted by haru.x· Apr 18, 2026Information Security Governance

Question

What is the information security steering committee's PRIMARY role in the development of security policies?

Options

  • ACommissioning an organization-wide security audit
  • BDrafting language related to policy noncompliance
  • CEnsuring policies facilitate business practices
  • DOverseeing a gap analysis against industry best practice

Explanation

The primary role of the information security steering committee in developing security policies is to ensure that policies support and facilitate business practices. Their responsibility is to align security initiatives with business objectives, balancing protection with operational efficiency.

Topics

#Information Security Steering Committee#Security Policy Development#Business Alignment#Governance Role

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CISM Practice
What is the information security steering committee's PRIMARY role... | CISM Q#751 Answer | NerdExam