An organization plans to unify its controls for multiple business units and seeks consistent oversight of technology processes. Which approach meets these goals most effectively?
Draft separate guidelines for each department with no unifying reference
Create a short directive that prioritizes management sign-off rather than standardized steps
Adopt a recognized framework that integrates processes and objectives across the enterprise
Rely on real-time feedback from internal project teams to decide final configurations
A recognized framework that integrates processes and objectives across departments promotes consistent security controls. A short directive with managerial sign-off overemphasizes leadership commitment without a thorough structure. Drafting separate policies without a unifying reference isolates efforts. Depending on real-time feedback from internal teams does not necessarily provide a standardized model for broader governance.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a recognized framework in the context of business processes?
Open an interactive chat with Bash
Why is adopting a framework better than creating separate guidelines for each department?
Open an interactive chat with Bash
What are the risks of relying solely on real-time feedback from internal teams?