Answer-first summary for fast verification
Answer: 1. NIST CSF; 2. CIS Controls; 3. ISO/IEC 27001
## Explanation This question tests knowledge of cybersecurity frameworks and their appropriate applications. Let's analyze each framework: **NIST CSF (Cybersecurity Framework)** - Provides a high-level, risk-based approach to managing cybersecurity risk. It's ideal for establishing an overall cybersecurity program and governance structure. **CIS Controls** - Offers specific, actionable technical controls for implementation. These are practical security measures that organizations can directly implement. **ISO/IEC 27001** - An international standard for information security management systems (ISMS) that focuses on certification and formal compliance. **Logical Progression:** 1. **NIST CSF** should come first as it provides the strategic framework and risk management approach 2. **CIS Controls** should follow as they provide the specific technical implementation guidance 3. **ISO/IEC 27001** should come last as it provides the formal certification and compliance framework Therefore, option C (1. NIST CSF; 2. CIS Controls; 3. ISO/IEC 27001) represents the most logical and effective progression for implementing cybersecurity standards, starting with strategic framework, moving to technical implementation, and ending with formal certification.
Author: LeetQuiz .
Ultimate access to all questions.
Which combination of cybersecurity standards best aligns with these requirements?
A
B
C
D
No comments yet.