Online Access Free CISM Exam Questions

Which of the following BEST enables an organization to maintain an appropriate security control environment?

• A.Alignment to an industry security framework
• B.Periodic employee security training
• C.Budgetary support for security
• D.Monitoring of the threat landscape

Which of the following is the BEST approach to incident response for an organization migrating to a cloud- based solution?

• A.Adopt the cloud provider's incident response procedures.
• B.Continue using the existing incident response procedures.
• C.Revise incident response procedures to encompass the cloud environment.
• D.Transfer responsibility for incident response to the cloud provider.

Which is the BEST method to evaluate the effectiveness of an alternate processing site when continuous uptime is required?

• A.Full interruption test
• B.Simulation test
• C.Parallel test
• D.Tabletop test

A balanced scorecard MOST effectively enables information security:

• A.governance
• B.project management
• C.risk management
• D.performance

Which of the following should have the MOST influence on an organization's response to a new industry regulation?

• A.The organization's control objectives
• B.The organization's risk control baselines
• C.The organization's risk management framework
• D.The organization's risk appetite