A third-party contract signed by a business unit manager failed to specify information security requirements.
Which of the following is the BEST way for an information security manager to prevent this situation from reoccurring?
A . Inform business unit management of the information security requirements.
B . Provide information security training to the business units
C . Integrate information security into the procurement process
D . Involve the information security team in contract negotiations
Answer: C
Latest CISM Dumps Valid Version with 1327 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund