Question

A Chief Information Security Officer (CISO) is creating a security committee involving multiple business units of the corporation.

Which of the following is the BEST justification to ensure collaboration across business units?

A. A risk to one business unit is a risk avoided by all business units, and liberal BYOD policies create new and unexpected avenues for attackers to exploit enterprises.
B. A single point of coordination is required to ensure cybersecurity issues are addressed in protected, compartmentalized groups.
C. Without business unit collaboration, risks introduced by one unit that affect another unit may go without compensating controls.
D. The CISO is uniquely positioned to control the flow of vulnerability information between business units.

Answer 1

The best justification to ensure collaboration across business units is that risks introduced by one unit that affect another unit may go without compensating controls.

Step-by-step explanation:

The BEST justification to ensure collaboration across business units when creating a security committee is option C: Without business unit collaboration, risks introduced by one unit that affect another unit may go without compensating controls.

Collaboration among business units is crucial in ensuring comprehensive and effective security measures. If one unit introduces a risk that affects another unit, without collaboration, the affected unit may not be aware of the risk and may not implement compensating controls. This can leave the organization vulnerable to attacks and breaches.

By collaborating across business units, the security committee can identify and address potential risks, develop coordinated security strategies, and ensure that all units are implementing necessary controls to protect the organization's data and assets.