To confirm that a third-party provider complies with an organization's information security requirements, it is MOST important to ensure: A. contract clauses comply with the organization's information security policy. B. security metrics are included in the service level agreement (SLA). C. the information security policy of the third-party service provider is reviewed. D. right to audit is included in the service level agreement (SLA). Â Suggested Answer: C This question is in CISM exam For getting Certified Information Security Manager Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by ISACA. The website does not contain actual questions and answers from ISACA's Certification Exams. Trademarks, certification & product names are used for reference only and belong to ISACA.
Please login or Register to submit your answer