Exam CISM Topic 5 Question 503 Discussion
Actual exam question for ISACA's CISM exam
Question #: 503
Topic #: 5
Question #: 503
Topic #: 5
From an information security manager perspective, what is the immediate benefit of clearly-defined roles and responsibilities?
Suggested Answer: D Vote an answer
Section: INFORMATION SECURITY GOVERNANCE
Explanation:
Without well-defined roles and responsibilities, there cannot be accountability. Choice A is incorrect because policy compliance requires adequately defined accountability first and therefore is a byproduct.
Choice B is incorrect because people can be assigned to execute procedures that are not well designed.
Choice C is incorrect because segregation of duties is not automatic, and roles may still include conflicting duties.
Explanation:
Without well-defined roles and responsibilities, there cannot be accountability. Choice A is incorrect because policy compliance requires adequately defined accountability first and therefore is a byproduct.
Choice B is incorrect because people can be assigned to execute procedures that are not well designed.
Choice C is incorrect because segregation of duties is not automatic, and roles may still include conflicting duties.
by Juliet at Jan 09, 2024, 02:06 AM
Contact Us
If you have any question please leave me your email address, we will reply and send email to you in 12 hours.
Our Working Time: ( GMT 0:00-15:00 ) From Monday to Saturday
Support: Contact now
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).