Which policy provides high-level direction for an organization's information security program?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards

From $9.99Unlock all

Study for the EC-Council Network Defense Essentials Exam with flashcards and multiple-choice questions. Each question includes detailed explanations and hints to boost your preparation. Be confident and ready to succeed!

Multiple Choice

Which policy provides high-level direction for an organization's information security program?

The policy that provides high-level direction for an organization’s information security program is the Enterprise Information Security Policy. It sets the overall direction, including the security objectives, the scope of the program, roles and responsibilities, management support, and how risk is approached. This top-level policy guides and constrains all other security activities and policies, ensuring they align with business goals. An Issue Specific Security Policy focuses on a single topic or area, not the entire program. Procedural Security Requirements describe how to perform security tasks, and Safeguard Security Requirements specify particular controls, both of which are more detailed and specific than the broad direction established by the EISP.

Which policy provides high-level direction for an organization's information security program?

Study for the EC-Council Network Defense Essentials Exam with flashcards and multiple-choice questions. Each question includes detailed explanations and hints to boost your preparation. Be confident and ready to succeed!

Which policy provides high-level direction for an organization's information security program?

Get the latest from Examzify