Exam ISO-IEC-27001-Lead-Implementer Topic 6 Question 11 Discussion
Actual exam question for PECB's ISO-IEC-27001-Lead-Implementer exam
Question #: 11
Topic #: 6
Question #: 11
Topic #: 6
Question:
Which statement regarding management reviews is correct?
Which statement regarding management reviews is correct?
Suggested Answer: A Vote an answer
ISO/IEC 27001:2022 Clause 9.3 -Management Review:
"Top management shall review the organization's ISMS, at planned intervals, to ensure its continuing suitability, adequacy and effectiveness." While theultimate responsibility rests with top management, reviews may be conducted atmultiple organizational levelsfor broader visibility and alignment. ISO/IEC 27004 also supports reviews at tactical and operational levels.
There isno requirementfor monthly reviews. Option C is incorrect, astop management cannot fully delegate the ultimate responsibility, only supporting roles.
"Top management shall review the organization's ISMS, at planned intervals, to ensure its continuing suitability, adequacy and effectiveness." While theultimate responsibility rests with top management, reviews may be conducted atmultiple organizational levelsfor broader visibility and alignment. ISO/IEC 27004 also supports reviews at tactical and operational levels.
There isno requirementfor monthly reviews. Option C is incorrect, astop management cannot fully delegate the ultimate responsibility, only supporting roles.
by Cornelius at Jun 16, 2025, 01:02 AM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).