Online Access Free ISACA.CISM.v2021-10-30.q999 Practice Test (Page 121)

CISM Exam Question 596

Which of the following would be MOST relevant to include in a cost-benefit analysis of a two-factor authentication system?

A.Annual loss expectancy (ALE) of incidents

B.Frequency of incidents

C.Total cost of ownership (TCO)

D.Approved budget for the project

CISM Exam Question 597

The MOST effective use of a risk register is to:

A.identify risks and assign roles and responsibilities for mitigation.

B.identify threats and probabilities.

C.facilitate a thorough review of all IT-related risks on a periodic basis.

D.record the annualized financial amount of expected losses due to risks.

CISM Exam Question 598

An information security manager discovers that the organization's new information security policy is not being followed across all departments. Which of the following should be of GREATEST concern to the information security manager?

A.Different communication methods may be required for each business unit.

B.The wording of the policy is not tailored to the audience.

C.The corresponding controls are viewed as prohibitive to business operations.

D.Business unit management has not emphasized the importance of the new policy.

CISM Exam Question 599

Which of the following is the BEST way to improve the timely reporting of information security incidents?

A.Regularly reassess and update the incident response plan.

B.Incorporate security procedures in help desk processes

C.Perform periodic simulations with the incident response team.

D.Integrate an intrusion detection system (IDS) in the DMZ

CISM Exam Question 600

The PRIMARY purpose of vulnerability assessments is to:

A.determine the impact of potential threats.

B.test intrusion detection systems (IDS) and response procedures.

C.detect deficiencies that could lead to a system compromise.

D.provide clear evidence that the system is sufficiently secure.

Other Version: 1971ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 745ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1233ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4425ISACA.CISM.v2022-09-16.q374; 8334ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11903ISACA.CISM.v2022-04-15.q999

Latest Upload: 170Microsoft.SC-400.v2025-09-20.q290; 399ISACA.CGEIT.v2025-09-19.q537; 160Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 161Scrum.SAFe-Practitioner.v2025-09-18.q63; 155Workday.Workday-Prism-Analytics.v2025-09-17.q17; 138Oracle.1Z0-1055-24.v2025-09-17.q28; 133Oracle.1Z1-182.v2025-09-17.q32; 266Nutanix.NCP-US-6.5.v2025-09-16.q73; 284Oracle.1z0-071.v2025-09-16.q232; 210Oracle.1Z1-922.v2025-09-16.q125

CISM Exam Question 596

CISM Exam Question 597

CISM Exam Question 598

CISM Exam Question 599

CISM Exam Question 600

Download PDF File