Question 186
Main Page
Which of the following should be part of security program performance reporting to executives?
A. Command line logs
B. User ticket volume
C. Strategic KPIs tied to risk reduction and business value
D. Patch management tools used
Answer: Strategic KPIs tied to risk reduction and business value
Executive reporting must be high-level, focused on outcomes and aligned with business priorities.