Free CompTIA CySA+ CS0-003 Practice Question
As a Cybersecurity Analyst, your company has recently passed a cybersecurity audit, and you are tasked with generating a compliance report. What information should be primarily included to align with the audit findings and demonstrate that the organization adheres to the relevant regulatory standards?
A detailed explanation of the state of compliance with relevant security controls, as well as any deficiencies identified in the audit and the planned or completed remediation actions.
An inventory of critical assets and their respective classifications according to data sensitivity levels.
An exhaustive list of all detected vulnerabilities, the risk scores associated to each, and the technical mitigation strategies implemented or planned.
Records of staff security awareness training sessions, including attendance logs and educational materials used.
