The correct option is To maintain consistency with evolving legal and industry requirements that shape information security controls.

This is correct because legal and industry requirements change over time and an ISMS must reflect those changes to remain effective and compliant. Regularly reviewing and updating compliance obligations ensures that new laws contracts and standards are incorporated into policies and controls so that risk is managed and regulatory penalties are avoided. Periodic review also supports the continual improvement principles of an ISMS by prompting adjustments to controls when requirements or the threat landscape evolve.

Security Command Center is incorrect because it names a tool or product rather than a reason to perform periodic compliance reviews. Tools can assist with monitoring and detection but they do not replace the need to align controls with changing legal and industry requirements.

To accelerate the adoption of new technological innovations is incorrect because the primary purpose of reviewing compliance obligations is to stay aligned with requirements and risks rather than to speed technology adoption. Technology choices may follow from reviews but they are not the core motivation for updating compliance obligations.

To reduce the ongoing operational workload for IT personnel is incorrect because compliance reviews often identify changes that require work to implement and validate controls. The goal of reviews is risk reduction and compliance rather than reducing operational workload.

Full AWS Practitioner Certification Question