🔥 3-day streak
ISACA CISM — Certified Information Security Manager109 / 121
Question 109 of 121
A newly appointed information security manager finds that security decisions across the enterprise are made inconsistently — IT approves some risk exceptions, business units approve others, and there is no coordinated forum for prioritizing security investments. Executives complain that security initiatives lack business buy-in and frequently stall. Which action would MOST effectively address the root cause of these governance problems?
Reviewed for accuracy · Report an issueNext question