CAS-005
Governance, Risk, and Compliance
hard
Question 1 of 20

A security program manager receives audit findings indicating that security controls are not consistently applied across business units. The root cause is that each unit interprets the corporate security policy differently. Which corrective action BEST addresses this systemic gap?

AIssue a memo reminding all staff of the security policy
BDevelop unit-specific standards that translate policy requirements into measurable control baselines
CIncrease the frequency of security awareness training
DReplace the SIEM with one that provides better compliance reporting

More Governance, Risk, and Compliance Questions

20 questions

Full CompTIA SecurityX Practice Test

All topics covered

All CompTIA SecurityX Questions

Browse by topic

Related Questions

Which threat modeling framework categorizes threats using the mnemonic STRIDE?...

easy

Which document type in a security program defines the mandatory rules that all employees must follow...

easy

What does a RACI matrix define in a security program?...

easy

Which risk assessment method assigns numerical monetary values to assets and potential losses?...

easy

A security architect is reviewing a third-party SaaS provider contract. The provider will process re...

medium
View all Governance, Risk, and Compliance questions

Educational Content — CertQnA practice questions are written against official exam objectives, covering the same domains tested on the real exam. All content is original and independent — not actual exam questions, not affiliated with any certification vendor. Learn more about our content policy

Discussion

Be the first to share your understanding of this concept

⚠️ Discussion is for concept clarification only. Do not share or request actual exam questions or answers.

Sign in to join the discussion

Sign InCreate free account