Which of the following should an organization review to gain a better understanding of the likelihood and impact of cybersecurity events?
Answer : C
Which of the following COBIT and NIST implementation steps may be reversed depending on the culture of the organization?
How should gaps identified between the current and target profiles be addressed?
Documenting opportunities for improvement occurs within which implementation phase?
Answer : B
Which function of the CSF is addressed by incorporating governance, risk, and compliance (GRC) elements into the implementation plan?
Answer : C
Which of the following is a framework principle established by NIST as an initial framework consideration?
Which of the following is the MOST beneficial result of an effective CSF implementation plan?