Question 1
Main Page
As the new CISO of a healthcare organization, you are tasked with creating a security program from scratch. What should your first step be?
A. Hire external penetration testers to assess vulnerabilities
B. Draft a detailed patch management policy
C. Develop a program charter defining authority, objectives, and scope
D. Set up a centralized Security Information and Event Management (SIEM) system