An organization with international operations can standardize one set of security policies without any modifications to comply across all countries where it does business.
The correct answer is false. An organization operating globally must tailor its security policies and practices to meet the specific legal, regulatory, and cultural requirements of each country it operates in. There are variations in laws regarding privacy, data protection, and other security-related matters, and a one-size-fits-all approach to security governance is not sufficient to ensure compliance in every jurisdiction.