Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

CompTIA Exam CS0-003 Topic 1 Question 21 Discussion

Actual exam question for CompTIA's CS0-003 exam
Question #: 21
Topic #: 1
[All CS0-003 Questions]

The Chief Information Security Officer (CISO) of a large management firm has selected a cybersecurity framework that will help the organization demonstrate its investment in tools and systems to protect its dat

a. Which of the following did the CISO most likely select?

Show Suggested Answer Hide Answer
Suggested Answer: C

ISO 27001 is an international standard that establishes a framework for implementing, maintaining, and improving an information security management system (ISMS). It helps organizations demonstrate their commitment to protecting their data and complying with various regulations and best practices. The other options are not relevant for this purpose: PCI DSS is a standard that focuses on protecting payment card data; COBIT is a framework that provides guidance on governance and management of enterprise IT; ITIL is a framework that provides guidance on service management and delivery.


According to the CompTIA CySA+ Study Guide: Exam CS0-003, 3rd Edition1, one of the objectives for the exam is to ''use appropriate tools and methods to manage, prioritize and respond to attacks and vulnerabilities''. The book also covers the usage and syntax of various cybersecurity frameworks and standards, such as ISO 27001, PCI DSS, COBIT, and ITIL, in chapter 1. Specifically, it explains the meaning and function of each framework and standard, such as ISO 27001, which provides a comprehensive approach to information security management1, page 29. Therefore, this is a reliable source to verify the answer to the question.

Contribute your Thoughts:

Ollie
6 months ago
I'm not sure, but I think COBIT could also be a good choice for demonstrating investment in cybersecurity.
upvoted 0 times
...
Kenneth
6 months ago
I agree with you, ISO 27001 is a widely recognized cybersecurity framework.
upvoted 0 times
...
Velda
6 months ago
Hmm, ITIL is all about IT service management, not security. PCI DSS is for the payment card industry, so that's not it either. ISO 27001 is the clear choice.
upvoted 0 times
...
Edda
6 months ago
I think the CISO probably selected ISO 27001.
upvoted 0 times
...
Detra
6 months ago
COBIT is a great framework, but it's more focused on overall IT governance rather than just cybersecurity. ISO 27001 is the way to go here.
upvoted 0 times
...
Aleisha
6 months ago
ISO 27001 is definitely the framework the CISO would have selected. It's the gold standard for information security management systems.
upvoted 0 times
Lajuana
5 months ago
I agree, it's widely recognized and respected in the industry.
upvoted 0 times
...
Pamella
5 months ago
ISO 27001 is a great choice, it covers all aspects of information security.
upvoted 0 times
...
Annabelle
5 months ago
I agree, it's widely recognized and respected in the industry.
upvoted 0 times
...
Kent
5 months ago
ISO 27001 is a great choice, it covers all aspects of information security.
upvoted 0 times
...
Adaline
6 months ago
The CISO made a smart decision by selecting ISO 27001 for the organization.
upvoted 0 times
...
Yaeko
6 months ago
I agree, it's widely recognized and respected in the industry.
upvoted 0 times
...
Coral
6 months ago
ISO 27001 is a great choice, it covers all aspects of information security.
upvoted 0 times
...
...

Save Cancel