Question: When an organization is setting up a relationship with a third-party IT service provider, which of the following is one of the MOST important topics to include in the contract from a security standpoint?
A.) Compliance with international security standards.
B.) Use of a two-factor authentication system.
C.) Existence of an alternate hot site in case of business disruption.
D.) Compliance with the organization’s information security requirements.

Download pdf (with explanations) edition of this exam.