法務チームは、法的手続きに関する情報を外部の審議会と共有する必要があります。チームはSaaSファイル共有を使用しています。外部関係者との情報共有に関する要件を最も適切に規定しているポリシーはどれですか?
正解:A
An information security policy is a document that defines the rules and guidelines for protecting the confidentiality, integrity, and availability of data and systems in an organization. It covers topics such as data classification, access control, encryption, backup, incident response, and compliance. An information security policy is essential for ensuring that data is shared securely with external parties, especially when using SaaS fileshares that may have different security standards and features than the organization's own systems. A communication policy, a resource management policy, and an identity control policy are all related to information security, but they are not as comprehensive and specific as an information security policy.