Question: Good information security standards should:
A.) define precise and unambiguous allowable limits.
B.) describe the process for communicating violations.
C.) address high-level objectives of the organization.
D.) be updated frequently as new software is releaseD.)

Download pdf (with explanations) edition of this exam.