Security Program Management
50 free practice questions with explanations
PassNova has 50 free CompTIA Security+ practice questions on Security Program Management, each with a clear explanation. Practise them in the browser with instant feedback — 100% free, no sign-up, on any device. Updated for 2026.
Security Program Management: example questions & answers
Here are 6 example questions from this topic. Practise the full set of 50 free in the browser.
-
What does GRC stand for in security management?
- A Governance, Risk, Compliance ✓
- B Global Resource Center
- C General Risk Control
- D Group Review Committee
Answer: GRC stands for Governance, Risk, and Compliance, the framework for managing security programs.
-
Which document sets high-level security expectations and management intent?
- A Procedure
- B Security policy ✓
- C Runbook
- D Diagram
Answer: A security policy sets high-level expectations and management's intent.
-
Which document gives mandatory specific requirements supporting a policy?
- A Guideline
- B Standard ✓
- C Suggestion
- D Diagram
Answer: A standard specifies mandatory requirements that support a policy.
-
Which document provides recommended but non-mandatory advice?
- A Policy
- B Standard
- C Guideline ✓
- D Law
Answer: A guideline offers recommended, non-mandatory best-practice advice.
-
Which document gives step-by-step instructions to accomplish a task?
- A Policy
- B Standard
- C Procedure ✓
- D Guideline
Answer: A procedure gives detailed step-by-step instructions to perform a task.
-
What is the first step of the risk management process?
- A Mitigate
- B Identify risks ✓
- C Transfer
- D Accept
Answer: Risk management begins with identifying assets and the risks to them.