Which of the following is NOT among the functions typically performed within the InfoSec department as a compliance enforcement obligation?
A) policy
B) centralized authentication
C) compliance/audit
D) risk management

Question

Quizplus · Accepted Answer

Centralized authentication is not necessarily a compliance enforcement obligation for the InfoSec department. While it is a security measure that can be implemented to ensure secure access to information systems, it may not be specifically required by any compliance regulations. The other three options - policy development and enforcement, compliance/audit monitoring, and risk management - are typical functions of the InfoSec department that are often required for compliance.

Which of the Following Is NOT Among the Functions Typically