🔥 3-day streak
ISACA CISM — Certified Information Security Manager95 / 121
Question 95 of 121
An information security manager wants to evaluate whether a newly implemented set of access controls is operating effectively in the production environment, rather than merely confirming that the controls have been documented and configured. Which approach provides the MOST reliable evidence of control effectiveness?
Reviewed for accuracy · Report an issueNext question