PECB
LEAD-AUDITOR · Question #373
LEAD-AUDITOR Question #373: Real Exam Question with Answer & Explanation
The correct answer is B. 8.8 - Management of technical vulnerabilities. See the full explanation below for the reasoning.
Question
During an audit, it was discovered that a department was using outdated antivirus software. Which ISO 27001:2022 control does this situation most directly violate?
Options
- A5.4 - Access control
- B8.8 - Management of technical vulnerabilities
- C5.2 - Information security roles and responsibilities
- D8.25 - Secure development lifecycle
Community Discussion
No community discussion yet for this question.