Which document provides a standardized approach for review and measurement of an information security program?

Enhance your preparation for the Federal IT Security Professional Test. Use quizzes, flashcards, and detailed explanations to ensure success. Stay ahead in the field of IT Security!

Multiple Choice

Which document provides a standardized approach for review and measurement of an information security program?

Explanation:
PRISMA (IR 7358) provides a standardized approach for review and measurement of an information security program. It establishes a consistent framework with defined assessment criteria, a scoring or rating system, evidence requirements, and structured reporting, so evaluations are objective and comparable across units and over time. This enables benchmarking, tracking of improvements, and alignment with risk management goals, making it the clear choice for a document that standardizes how an organization reviews and measures its information security program. The other documents address related security topics but do not offer the unified measurement framework that PRISMA provides.

PRISMA (IR 7358) provides a standardized approach for review and measurement of an information security program. It establishes a consistent framework with defined assessment criteria, a scoring or rating system, evidence requirements, and structured reporting, so evaluations are objective and comparable across units and over time. This enables benchmarking, tracking of improvements, and alignment with risk management goals, making it the clear choice for a document that standardizes how an organization reviews and measures its information security program. The other documents address related security topics but do not offer the unified measurement framework that PRISMA provides.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy