Which of the following provides the linkage to ensure that procedures are correctly aligned with
information security policy requirements?
A.
Standards
B.
Guidelines
C.
Security metrics
D.
IT governance
Explanation:
Standards are the bridge between high-level policy statements and the “how to” detailed formal of
procedures. Security metrics and governance would not ensure correct alignment between
policies and procedures. Similarly, guidelines are not linkage documents but rather provide
suggested guidance on best practices.