PK0-005 Question #209: Real Exam Question with Answer & Explanation

The correct answer is B: Percentage of risk investments with defined business cases. The percentage of risk investments with defined business cases is a metric that measures how well the information security program aligns with the operational objectives of the organization. It indicates how many of the security-related investments are justified by a clear analys

Basics of IT and governance

Question

Which of the following metrics BEST measures the alignment of the information security program to operational objectives?

Options

APercentage of controls with identified business owners
BPercentage of risk investments with defined business cases
CRatio of control cost to operational budget
DSenior management satisfaction scores related to the security program

Explanation

The percentage of risk investments with defined business cases is a metric that measures how well the information security program aligns with the operational objectives of the organization. It indicates how many of the security-related investments are justified by a clear analysis of the expected benefits, costs, and risks, and how they support the business goals and priorities. This metric can help the organization optimize its security spending, demonstrate the value of security to the stakeholders, and align the security strategy with the business strategy.

Topics

#Security Metrics#Business Alignment#Risk Investment#Information Security Governance

Community Discussion

No community discussion yet for this question.

Full PK0-005 Practice Browse All PK0-005 Questions