Question: Which of the following would help to change an organization’s security culture?
A.) Develop procedures to enforce the information security policy
B.) Obtain strong management support
C.) Implement strict technical security controls
D.) Periodically audit compliance with the information security policy

Download pdf (with explanations) edition of this exam.