Question

Which of the following is not a step in the security life cycle?

a. Assess the information security-related threats that the organization faces and select an appropriate response.
b. Develop information security policies and communicate them to all employees.
c. Acquire and implement specific technological tools.
d. Monitor performance to evaluate the effectiveness of the organization's information security program.
e. None of the above; all are steps in the security life cycle.

Answer 1

Option d, monitor performance to evaluate the effectiveness of the organization's information security program, is not a step in the security life cycle.

Step-by-step explanation:

The step that is not a part of the security life cycle is option d. Monitor performance to evaluate the effectiveness of the organization's information security program. The security life cycle involves several steps to ensure information security within an organization. The other options listed, a. Assess the information security-related threats that the organization faces and select an appropriate response; b. Develop information security policies and communicate them to all employees; and c. Acquire and implement specific technological tools, are all important steps in the security life cycle.