Question

All of the following are true of IT policy frameworks, except: A. an IT policy framework includes policies, standards, baselines, procedures, guidelines, and a taxonomy. B. the framework must define the business as usual (BAU) activities and accountabilities needed to ensure information security policies are maintained. C. an IT policy framework should be fully accessible by executives and managers, with relevant highlights shared with general employees. D. you can measure success by how well the framework helps reduce risk to the organization.

Answer 1

D. you can measure success by how well the framework helps reduce risk to the organization.

Step-by-step explanation:

The IT policy measures includes

1. The policies, standard, etc

2. It is the framework that works with the bau activities in order to ensure the policies related to the information security that should be maintained

3. It could be fully accessible by the executives having a relevant highlights that shared with the general employees

SO, the option d is considered