Exam ISO-IEC-27001-Lead-Auditor Topic 4 Question 129 Discussion
Actual exam question for PECB's ISO-IEC-27001-Lead-Auditor exam
Question #: 129
Topic #: 4
Question #: 129
Topic #: 4
What type of system ensures a coherent Information Security organisation?
Suggested Answer: C Vote an answer
Explanation
An Information Security Management System (ISMS) is a systematic approach to managing the security of information assets within an organization. It includes the policies, processes, and controls that address the risks and opportunities related to information security. An ISMS is based on the Plan-Do-Check-Act (PDCA) cycle, which consists of four phases: establishment, implementation, operation, and maintenance. Therefore, an ISMS is set up in the following order: establishment, implementation, operation, maintenance. References: ISO/IEC 27000:2022, clause 3.24; ISO/IEC 27001:2022, clause 4.
An Information Security Management System (ISMS) is a systematic approach to managing the security of information assets within an organization. It includes the policies, processes, and controls that address the risks and opportunities related to information security. An ISMS is based on the Plan-Do-Check-Act (PDCA) cycle, which consists of four phases: establishment, implementation, operation, and maintenance. Therefore, an ISMS is set up in the following order: establishment, implementation, operation, maintenance. References: ISO/IEC 27000:2022, clause 3.24; ISO/IEC 27001:2022, clause 4.
by Don at Feb 12, 2024, 11:22 PM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).