Question

For a business operating in a competitive and evolving online market, it is MOST important for a security policy to focus on:

A. defining policies for new technologies.

B. enabling adoption of new technologies.

C. requiring accreditation for new technologies.

D. managing risks of new technologies.

Correct Answer: B???? or D?????? or Others…...

______________________

Note

■ Some good websites claim that the correct answer is D ("managing risks of new technologies").

■ Others good websites claim that the correct answer is B ("enabling adoption of new technologies").

■ Why D and not B? Why B and not D?

Many thanks!

Answer 1

Question :

For a business operating in a competitive and evolving online market, it is MOST important for a security policy to focus on:

Answer : Option D - "managing risks of new technologies"

Explanation : The Option D(managing risks of new technologies) is the correct answer because business organization take security policy to protect their organization from threats,risks arised by new technologies. To increase their profits business organizations want to do business online where it acquired new technologies to do the business processes. From these new technologies there may be risks are arised because the organization may share the information across the internet. So it is important that security policy should focus on managing risks of new technologies. For this reason only , business organizations took up the security policy to protect their business assets. Therefore, Option D is the correct answer.

Why other options are wrong :

Option A : This is wrong answer because security policy main objective is protecting organization from risks but it not defining new policies to the new technologies.

Option B : This is also not suitable answer because it is one of the reason to took up the security policy but not security policy main objective is focusing on this option. Adopting new technologies is the reason to took up the security policy to protect the business assets from the risks arised from these adopted new technologies.

Option C : This is also wrong answer because security policy is not responsible for giving accreditations to the new technologies.