Question: The MOST effective approach to address issues that arise between IT management, business units and security management when implementing a new security strategy is for the information security manager to:
A.) escalate issues to an external third party for resolution.
B.) ensure that senior management provide authority for security to address the issues.
C.) insist that managers or units not in agreement with the security solution accept the risk.
D.) refer the issues to senior management along with any security recommendations.

Download pdf (with explanations) edition of this exam.