aglaialy 发表于 2011-5-24 17:11:15

B吧,一级文件诶

先锋小编 发表于 2011-5-24 17:29:35

答案:C

bs15000 发表于 2011-5-24 19:33:26

SD 4.6.4.2 The Information Security Policy
......................................................................................................
These policies should be widely available to all customers and users, and their
compliance should be referred to in all SLRs, SLAs, contracts and agreements.
The policies should be authorized by top executive management within the
business and IT, and compliance to them should be endorsed on a regular basis.
All security policies should be reviewed – and, where necessary, revised – on at
least an annual basis.
页: 1 [2]
查看完整版本: 【考题训练第十期】The IS Policy should be available to which groups of people?