During a disruptive event, which security continuity objectives will maintain an organization’s information security to a predetermined level?
During a disruptive event, which security continuity objectives will maintain an organization’s information security to a predetermined level?
An Information Security Continuity Plan (ISCP) is specifically designed to maintain the confidentiality, integrity, and availability of an organization's information during and after a disruptive event. It focuses on the specific security measures needed to keep information secure, distinguishing it from broader plans like a Business Continuity Plan (BCP) or a Disaster Recovery Plan (DRP), which may not exclusively address information security.
INFORMATION SECURITY CONTINUITY PLAN is a term used within ISO 27001 to describe the process for ensuring confidentiality, integrity and availability of data is maintained in the event of an incident. During a disruptive event, an organization can maintain its information security to a predetermined level due to information security continuity plan.
C is correct
In Annex A of ISO 27001, (ISO 27002, too)
ISO 27001 Security must go on
How those questions are even relevant if they are not even in the Official Study Guide ? ISC² really want the $$
Answer C) Information security continuity plan https://www.isms.online/iso-27001/annex-a-17-information-security-aspects-of-business-continuity-management/#:~:text=A.17.1.2%20Implementing-,Information%20Security%20Continuity,required%20level%20of%20continuity%20for%20information%20security%20during%20a%20disruptive%20situation.,-Once%20requirements%20have
C. Information security continuity plan. An Information Security Continuity Plan (ISCP) is a specific plan that focuses on maintaining information security during and after a disruptive event. It is a subset of the broader Business Continuity Plan (BCP) but specifically addresses the protection of information and information systems.