Home MCQs CISA Question #1751
Back to Questions
CISA QUESTION #1751
Question 1
Which of the following is NOT a purpose of the ISO 15489 records management standard?
  • Define minimum legal handling requirements for data records
  • Provide a legal standard of negligence and culpability
  • Eliminate the need for a detailed classification list for each data set✔️
  • Define governance responsibilities across the data life cycle
Correct Answer Explanation
ISO 15489 defines the minimum handling process for records of value and requires an information classification system — a list of each data set to be protected. It does not eliminate the need for such a list; rather, it mandates one as a core governance control.