To confirm that a third-party provider complies with an organization's information security requirements, it is MOST important to ensure:

QuestionsCategory: CISMTo confirm that a third-party provider complies with an organization's information security requirements, it is MOST important to ensure:
Admin Staff asked 6 months ago
To confirm that a third-party provider complies with an organization's information security requirements, it is MOST important to ensure:

A. contract clauses comply with the organization's information security policy.

B. security metrics are included in the service level agreement (SLA).

C. the information security policy of the third-party service provider is reviewed.

D. right to audit is included in the service level agreement (SLA).








 

Suggested Answer: C



This question is in CISM exam 
For getting Certified Information Security Manager Certificate


Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by ISACA.
The website does not contain actual questions and answers from ISACA's Certification Exams.
Trademarks, certification & product names are used for reference only and belong to ISACA.

Next Post

Recommended

Welcome Back!

Login to your account below

Create New Account!

Fill the forms below to register

Retrieve your password

Please enter your username or email address to reset your password.