A security analyst performs an internal security audit. They review their company’s existing assets, then evaluate potential risks to those assets. Which aspect of a security audit does this scenario describe?1 pointAssessing complianceEstablishing the scope and goalsCompleting a controls assessmentCommunicating results

Fill in the blank: In an internal security audit, _____ involves identifying potential threats, risks, and vulnerabilities in order to decide what security measures should be implemented.1 pointconducting a risk assessmentestablishing the scope and goalscommunicating to stakeholdersassessing compliance

Fill in the blank: In an internal security audit, _____ refers to identifying people, assets, policies, procedures, and technologies that might impact an organization’s security posture.1 pointscopecompleting a controls assessmentimplementing administrative controlsgoals

A company has decided to evaluate its security posture to ensure it aligns with specific industry regulations. Which type of audit is most appropriate for this scenario?Internal Audit CommitteeExternal Regulatory AuditInternal Self-AssessmentAttestation查看全部问题返回下一个问题

What are some of the primary objectives of an internal security audit? Select three answers.1 pointImprove security postureDevelop a guiding security statement for the businessHelp security teams identify organizational riskAvoid fines due to a lack of compliance

What occurs during a security audit?1 pointReview of an organization’s security records, activities, and other related documentsPrioritizing tasks, processes, and proceduresEthical hacking of an organization's internal network to identify vulnerabilitiesAnalyzing the efficiency of an organization's internal network