December 23, 2021 by Admin
Which of the following should an IS auditor recommend be done FIRST upon learning that new data protection legislation may affect the organization?
- Implement data protection best practices
- Implement a new security baseline for achieving compliance
- Restrict system access for noncompliant business processes
- Perform a gap analysis of data protection practices