[New post] CISSP PRACTICE QUESTIONS – 20210820

Wentz Wu posted: " A policy is an aggregate of management intent, directives, rules, and practices, which specifies the correct or expected behavior. It's written at a broad level and needs other artifacts, such as standards, procedures, and guidelines, for elaboration" New post on Wentz Wu CISSP PRACTICE QUESTIONS – 20210820 by Wentz Wu A policy is an aggregate of management intent, directives, rules, and practices, which specifies the correct or expected behavior. It's written at a broad level and needs other artifacts, such as standards, procedures, and guidelines, for elaboration. Which of the following statements is incorrect? (Wentz QOTD) A. A policy is always created by senior management only. B. Standards are normally compulsory within an organization. C. Policy, standards, procedures, and guidelines can be mixed in one manual. D. Policy can be used to establish an organization's information security program. Read more of this post Wentz Wu | August 20, 2021 at 12:45 pm | Categories: QOTD, Technology, 每日一題 | URL: https://wp.me/p2X0VJ-8nN Comment    See all comments Unsubscribe to no longer receive posts from Wentz Wu. Change your email settings at Manage Subscriptions. Trouble clicking? Copy and paste this URL into your browser: https://wentzwu.com/2021/08/20/cissp-practice-questions-20210820/