2000Which of the following should be the GREATEST concern to an IS auditor reviewing the information security framework of an organization?
选项:
A:The information security policy has not been updated in the last two years.
B:A list of critical information assets was not included in the information security policy.
C:Senior management was not involved in the development of the information security policy.
D:The information security policy is not aligned with regulatory requirements.
发布时间:2024-03-29 09:26:05