When implementing a security program, which approach should be undertaken by management for proper support and direction?
A.
A top-down approach should be implemented, meaning that the implementation and support should come from the IT management and work its way down.
B.
A bottom-up approach should be implemented, meaning that the implementation and support should come from the company top management and work its way up to the IT management and staff members.
C.
A top-down approach should be implemented, meaning that the implementation and support should come from the company�s top management and work its way through middle management and then to staff members.
D.
A bottom-up approach should be undertaken by the IT department developing a security program and implementing it in order to provide support and direction that is necessary.
Explanation:
Top senior management should be the initiators of security management
within a corporation. Once buy-in from the top begins, then a successful top-down
approach can begin.