nerdexam
ExamsCISSPQuestions#85
(ISC)2(ISC)2

CISSP · Question #85

CISSP Question #85: Real Exam Question with Answer & Explanation

The correct answer is D: At regularly scheduled meetings. Compliance to the SLA should be reviewed at regularly scheduled meetings, such as monthly or quarterly, to ensure that the security posture is being delivered as agreed. This allows both parties to monitor the performance, identify any issues or gaps, and take corrective actions

Submitted by kim_seoul· Mar 5, 2026Security and Risk Management

Question

An internal Service Level Agreement (SLA) covering security is signed by senior managers and is in place. When should compliance to the SLA be reviewed to ensure that a good security posture is being delivered?

Options

  • AAs part of the SLA renewal process
  • BPrior to a planned security audit
  • CImmediately after a security breach
  • DAt regularly scheduled meetings

Explanation

Compliance to the SLA should be reviewed at regularly scheduled meetings, such as monthly or quarterly, to ensure that the security posture is being delivered as agreed. This allows both parties to monitor the performance, identify any issues or gaps, and take corrective actions if needed. Reviewing the SLA only as part of the renewal process, prior to a planned security audit, or immediately after a security breach is not sufficient, as it may result in missing or delaying the detection and resolution of security problems.

Topics

#SLA compliance#security posture#continuous monitoring#governance

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CISSP PracticeBrowse All CISSP Questions