cissp question 1465 discussion

View all Certified Information Systems Security Professional Exam here
back to isc forum

Question 1465

Which of the following addresses requirements of security assessment during software acquisition?

  • A. Software assurance policy
  • B. Continuous monitoring
  • C. Software configuration management (SCM)
  • D. Data loss prevention (DLP) policy
Answer:

B


User Votes:
A 1 votes
50%
B
50%
C
50%
D
50%
Discussions
0 / 1000
BobNopaddy
4 days, 14 hours ago

A software assurance policy directly addresses the requirements of security assessment during software acquisition. It outlines the standards, procedures, and expectations for evaluating the security posture of software throughout its lifecycle—from procurement to deployment and maintenance. This policy ensures that security is built into the acquisition process, not bolted on afterward

0