Question: When considering the value of assets, which of the following would give the information security manager the MOST objective basis for measurement of value delivery in information security governance?
A.) Number of controls
B.) Cost of achieving control objectives
C.) Effectiveness of controls
D.) Test results of controls

Download pdf (with explanations) edition of this exam.