Enforcing the implementation and management of security controls within services or products offered by third-party providers is a vital component of which security program service to the business?
Comprehensive and Detailed Explanation (250–350 words)
===========
According to EC-Council CCISO documentation, enforcing security controls in third-party services is a core function of vendor (third-party) management.
CCISO materials emphasize that vendor management ensures contractual security requirements, audits, attestations, and ongoing assurance. Vulnerability management (Option A) focuses internally. Governance (Option D) provides oversight but does not directly enforce vendor controls.
Therefore, Option C is correct.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit