An organization is implementing a preselected baseline of security controls, but finds not all of the controls apply. What should they do?A. Implement all of the controls anyway.B. Identify another baseline.C. Re-create a baseline.D. Tailor the baseline to their needs.

Question

02-02-2019
Computers and Technology

contestada

An organization is implementing a preselected baseline of security controls, but finds not all of the controls apply. What should they do?A. Implement all of the controls anyway.B. Identify another baseline.C. Re-create a baseline.D. Tailor the baseline to their needs.

Respuesta :

Otras preguntas

Which one of the following political interest groups falls into the organized labor category? A. American Rifle Association B. National Broadcasting Corporation

Do lions shiver? Why or why not

Which of the following describes a basic belief or practice in Judaism? A. refusing to live among people of different beliefs B. reading and understanding the T

European civilization was formed by Germanic peoples, the Christian church, and the ...

Why is farming in mountainous areas so difficult without terracing? a. poor soil quality of mountainous land b.rugged landscape of mountainous land c. lack of h

What were NOT factors for wartime economic growth? A.) the need to supply a global army B.) government management of scarce resources C.) full employment D.) th

Is C4 photosynthesis the photosynthetic process used by some plants to survive in a hot dry climate, like the desert?

Why are leaves green?

A box of powdered laundry detergent contains 5.2 ounces of detergent. It takes 0.7 ounce of detergent to clean a load of laundry. How many full loads can by cle

The total cost for a bowling game includes the fee for the shoe rental plus a fee per game. The cost of each game increases the price by $4. After 3 games, the

Diatonic254 Diatonic254 · Answer 1 · 2019-02-14T03:34:23+01:00

The answer is Tailoring the baseline to their needs.

After an organization selects applicable security control baseline but finds not all of the controls apply, it initiates a tailoring process to modify the controls appropriately and more closely with specific conditions related to organizational missions, information systems or environments of operation. It is an integral part of the security control selection and specification and involves risk management processes like assessing, responding to, and framing.