Exam ISO-IEC-27001-Lead-Implementer Topic 5 Question 138 Discussion
Actual exam question for PECB's ISO-IEC-27001-Lead-Implementer exam
Question #: 138
Topic #: 5
Question #: 138
Topic #: 5
Question:
Who is responsible for ensuring that the ISMS achieves its intended outcomes?
Who is responsible for ensuring that the ISMS achieves its intended outcomes?
Suggested Answer: B Vote an answer
According to ISO/IEC 27001:2022 Clause 5.1 -Leadership and Commitment:
"Top management shall demonstrate leadership and commitment with respect to the information security management system by:
e) ensuring that the ISMS achieves its intended outcomes."
Top management must not only provide resources but alsointegrate ISMS into organizational processes, promote awareness, and support roles like the ISMS manager. While theISMS project managersupports implementation,top management bears ultimate accountability.
"Top management shall demonstrate leadership and commitment with respect to the information security management system by:
e) ensuring that the ISMS achieves its intended outcomes."
Top management must not only provide resources but alsointegrate ISMS into organizational processes, promote awareness, and support roles like the ISMS manager. While theISMS project managersupports implementation,top management bears ultimate accountability.
by Marsh at May 19, 2026, 11:51 PM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).