IT Examiner School - Oct 2023

First page Table of contents Previous page 102 Next page Last page

Review Question 1 What term describes that only authorized individuals have access to information? A. Integrity B. Confidentiality C. Availability

7

Understanding GRC Governance, Risk & Compliance

• Governance: Rules processes, and policies that steer an organization and help meet goals. (Set by the Board & Executive Management) • Risk: Day-to-day, technical processes in place to mitigate and monitor risk. • Compliance: Monitoring and audit steps to provide assurance that company is operating at a capacity consistent with standards and regulations.

8

Made with FlippingBook - professional solution for displaying marketing and sales documents online