Security Program Requirements | CRCM Exam Preparation

Not a Requirement of a Security Program

Prev Question Next Question

Question

Which of the following sets of policies or procedures is NOT a requirement of a security program?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

C

A security program is a set of policies and procedures designed to safeguard an organization's assets, including people, information, and physical property. The goal is to protect these assets against a variety of threats, such as theft, unauthorized access, and natural disasters.

Option A: Policies addressing what to do in case of a robbery. Robbery is a potential threat that financial institutions face, and having policies in place that address what to do in case of a robbery is an important part of a security program. This may include procedures for reporting the incident, contacting law enforcement, and providing support to employees and customers who may have been affected. Therefore, this option is likely a requirement of a security program.

Option B: Procedures for opening the bank at the beginning of the day. Procedures for opening the bank at the beginning of the day are important for ensuring that the bank operates efficiently and effectively. However, they are not directly related to security. Therefore, this option may not be a strict requirement of a security program.

Option C: Procedures for keeping customer information private. Protecting customer information is an essential part of a financial institution's security program. Procedures for keeping customer information private may include encryption, access controls, and monitoring. Therefore, this option is likely a requirement of a security program.

Option D: Policies addressing periodic reporting to the board of directors. Periodic reporting to the board of directors is an important part of corporate governance, but it is not directly related to security. Therefore, this option may not be a strict requirement of a security program.

In summary, options A and C are likely requirements of a security program, while options B and D may not be.