(ISC)2(ISC)2
CISSP · Question #94
CISSP Question #94: Real Exam Question with Answer & Explanation
Sign in or unlock CISSP to reveal the answer and full explanation for question #94. The question stem and answer options stay visible for context.
Submitted by helene.fr· Mar 5, 2026Security and Risk Management
Question
An organization is selecting a service provider to assist in the consolidation of multiple computing sites including development, implementation and ongoing support of various computer systems. Which of the following MUST be verified by the Information Security Department?
Options
- AThe service provider's policies are consistent with ISO/IEC27001 and there is evidence that the
- BThe service provider will segregate the data within its systems and ensure that each region's
- CThe service provider will impose controls and protections that meet or exceed the current systems
- DThe service provider's policies can meet the requirements imposed by the new environment even
Unlock CISSP to see the answer
You've previewed enough free CISSP questions. Unlock CISSP for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#third-party risk management#vendor selection#security requirements#due diligence