Home » ISC » CISSP-2018 » When evaluating third-party applications, which of the following is the GREATEST responsibility of Information Security?

When evaluating third-party applications, which of the following is the GREATEST responsibility of Information Security?

08/13/2019 – by Mod_GuideK 3

When evaluating third-party applications, which of the following is the GREATEST responsibility of Information Security?
A. Accept the risk on behalf of the organization.
B. Report findings to the business to determine security gaps.
C. Quantify the risk to the business for product selection.
D. Approve the application that best meets security requirements.

SHOW ANSWERS

Download Printable PDF. VALID exam to help you PASS.

3 thoughts on “When evaluating third-party applications, which of the following is the GREATEST responsibility of Information Security?”

Anonymous says:

01/17/2021 at 11:15 PM

Randy but it says GREATEST, not FIRST…

D seems like the greatest to me

1
1

Reply
Randy says:

10/28/2020 at 12:23 AM

I think C happens first and then from qualified products best would be selected. So C seems correct answer.

3
1

Reply
Anon says:

07/21/2020 at 2:18 PM

what about D?

1

Reply

3 thoughts on “When evaluating third-party applications, which of the following is the GREATEST responsibility of Information Security?”

Leave a Reply Cancel reply