Guidelines and standards that are important to Information Security Management Systems include all the following except
A) COSO.
B) COBIT.
C) ERM.
D) ISO 27000 series.

Question

Quizplus · Accepted Answer

COSO, COBIT, and ISO 27000 series are all widely recognized guidelines and standards for information security management systems. ERM, however, stands for Enterprise Risk Management, which is a related but distinct area of focus that deals with the identification, assessment, and prioritization of risks across an entire organization. While ERM and information security management systems may overlap to some extent, ERM is not specifically focused on the management of information security risks.

Guidelines and Standards That Are Important to Information Security Management