When using theGoverningfor Enterprise Security (GES)program,anEnterprise Security Program (ESP)should be structured so that governance activities aredriven by the organization's executive management,select key stakeholders,as well as the ____________.
A) Board Risk Committee
B) Board Finance Committee
C) Board Audit Committee
D) Chairman of the Board

Question

When using theGoverningfor Enterprise Security (GES)program,anEnterprise Security Program (ESP)should be structured so that governance activities aredriven by the organization's executive management,select key stakeholders,as well as the ____________.
A) ​Board Risk Committee
B) ​Board Finance Committee
C) ​Board Audit Committee
D) ​Chairman of the Board

Quizplus · Accepted Answer

The GES program emphasizes the importance of having a governance structure that includes a Board Risk Committee to oversee enterprise security. Therefore, when structuring an ESP, it is important to ensure that governance activities are driven by the organization's executive management, select key stakeholders, as well as the Board Risk Committee to ensure effective oversight of enterprise security. The other options may also play a role in governance activities, but the Board Risk Committee is specifically highlighted in the GES program.

When Using TheGoverningfor Enterprise Security (GES)program,anEnterprise Security Program (ESP)should Be