Online Access Free ISACA.CISM.v2021-10-30.q999 Practice Test (Page 169)

CISM Exam Question 836

An organization's marketing department wants to use an online collaboration service which is not in compliance with the information security policy. A risk assessment is performed, and risk acceptance is being pursued. Approval of risk acceptance should be provided by:

A.the information security manager

B.business senior management

C.the chief risk officer

D.the compliance officer.

CISM Exam Question 837

Ensuring that an organization can conduct security reviews within third-party facilities is PRIMARILY enabled by:

A.audit guidelines.

B.contractual agreements.

C.acceptance of the organization s security policies.

D.service level agreements (SLAs).

CISM Exam Question 838

The PRIMARY reason for assigning classes of sensitivity and criticality to information resources is to provide a basis for:

A.determining the scope for inclusion in an information security program.

B.defining the level of access controls.

C.justifying costs for information resources.

D.determining the overall budget of an information security program.

CISM Exam Question 839

An information security manager at a global organization that is subject to regulation by multiple governmental jurisdictions with differing requirements should:

A.bring all locations into conformity with the aggregate requirements of all governmental jurisdictions.

B.establish baseline standards for all locations and add supplemental standards as required.

C.bring all locations into conformity with a generally accepted set of industry best practices.

D.establish a baseline standard incorporating those requirements that all jurisdictions have in common.

CISM Exam Question 840

Executive management is considering outsourcing all IT operations. Which of the following functions should remain internal?

A.Data ownership

B.Data monitoring

C.Data custodian

D.Data encryption

Other Version: 1921ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 745ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4423ISACA.CISM.v2022-09-16.q374; 8305ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11816ISACA.CISM.v2022-04-15.q999

Latest Upload: 344ISACA.CGEIT.v2025-09-19.q537; 155Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 156Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 132Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 250Nutanix.NCP-US-6.5.v2025-09-16.q73; 266Oracle.1z0-071.v2025-09-16.q232; 204Oracle.1Z1-922.v2025-09-16.q125; 329CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISM Exam Question 836

CISM Exam Question 837

CISM Exam Question 838

CISM Exam Question 839

CISM Exam Question 840

Download PDF File