The InfoSec measurement development process recommended by NIST is divided into two major activities. Which of the following is one of them?
A. development and selection of qualified personnel to gauge the implementation, effectiveness, efficiency, and impact of the security controls
B. identification and definition of the current InfoSec program
C. maintenance of the vulnerability management program
D. comparison of organizational practices against similar organizations
Answer: B
You might also like to view...
Which operating system is a version of Linux?
A. UNIX B. Ubuntu C. Multics D. MINIX
A style rule ____ defines the rule's target.
A. table B. property C. value D. selector
A macro is a series of statements that instructs a program or app how to complete a task.
Answer the following statement true (T) or false (F)
A color that is repeated in different places on the canvas helps create a sense of ____.
a. resolution b. rhythm c. unity d. balance