Who has a responsibility for information security in an organisation?

Question $27$ Answer

a$.$

The Security Officer

b$.$

The CEO

c$.$

ICT

d$.$

External Information Security Consultants

e$.$

All employees and contractors of the organisation.

Question $28$

Answer saved

Marked out of $2\mathrm{.}00$

Flag question

Question text

Which of the following statements is a valid effect of concrete rules?

Question $28$ Answer

a$.$

A transaction procedure cannot be processed if it is not permitted.

b$.$

All transaction procedures can be added to an audit log$.$

c$.$

Transaction procedure certification guarantees data is in a valid state.

d$.$

A human certifies that users are on an authorised list.

e$.$

The system certifies constrained data item validation.