_____is a widely accepted international best practices framework for implementing information systems security.Business as Usual (BAU)Business process reengineering (BPR)Control Objectives for Information and related Technology (COBIT)Information Systems Audit and Control Association (ISACA)

Which of the following is the guiding IT governance principles for those responsible in organisations for the effective, efficient and acceptable use of information technology within their organisations?Question 9AnswerSelect one:a.The Information Technology Infrastructure Library (ITIL)b.The International Organization for Standardization (ISO) 27002, Code of Practice for Information Security Managementc.The international standard, ISO/IEC 38500:2015 Information technology — Governance of IT for the Organisationd.Information Systems Audit and Control Association (ISACA) control objectives for IT (COBIT)

Which one of the following industry standards describes a standard approach for setting up an information security management system?CISISO 27002OWASPISO 27001

Which framework should be recommended for establishing a comprehensive information security management system in an organization?Question 4Select one:CIA TriadISO/IEC 27000NIST/NICE frameworkISO OSI model

The 27000 series are international standards and can be used as a framework for creating and implementing an information security management system. True or false?

Information Security Policy [2] Organization of Information Security [3] Human Resources Security[4] Asset Management [5] Logical Security / Access control [6] Physical and Environmental Security [7] Operations Security [8] Communications Security [9] Systems Acquisition, Development, and Maintenance [10] Supplier Relationships [11] Information Security Incident Management [12] Information Security Aspects of Business Continuity Management [13] Compliance2. Create a table and list all controls for each domain in Figure 1. Refer pdf document attaches.