🔥 3-day streak
ISACA CISM — Certified Information Security Manager6 / 121
Question 6 of 121

An information security manager is developing the security program for a large enterprise and must ensure that protection levels applied to data are appropriate and cost-effective. Before selecting and applying baseline controls to the organization's information assets, which activity provides the MOST essential foundation for these decisions?

Reviewed for accuracy · Report an issueNext question