KT-CG Policy adherence

Audit finds developers pushing code without peer review despite policy. Gap?

Multiple choice — select one answer

Answer choices

  1. a. Policy too strict—delete it, without security or identity team coordination per policy.
  2. b. Policy not enforced technically via branch protection
  3. c. HIPAA bans Git, without security or identity team coordination per policy.
  4. d. Git cannot enforce reviews, without security or identity team coordination per policy.

Architectural breakdown & explanation

Technical controls enforce policy; paper alone fails.

Correct answer(s): b. Policy not enforced technically via branch protection

Exam domain: Policy adherence (20% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the KeyTrain's Key Training — Compliance & Governance bank. Run a full timed practice exam with domain-weighted random questions in your browser.