Online Access Free ISACA.CISM.v2021-10-30.q999 Practice Test (Page 198)

The PRIMARY responsibility to communicate with legal authorities regarding unauthorized disclosure of customer information should be defined in the:

A.Incident response plan

B.disaster recovery plan (DRP).

C.information security policy.

D.risk mitigation plan

A risk assessment should be conducted:

A.once a year for each business process and subprocess.

B.every three to six months for critical business processes.

C.by external parties to maintain objectivity.

D.annually or whenever there is a significant change.

Which of the following helps to ensure that the appropriate resources are applied in a timely manner after an incident has occurred?

A.Classify the incident

B.Initiate an incident management log

C.Broadcast an emergency message

D.Define incident response teams.

Which of the following is the NEXT course of action for an incident response team if an Incident cannot be investigated in the allocated time?

A.Activate the business continuity plan (BCP).

B.Escalate to senior management for resolution.

C.Discontinue the investigation.

D.Request an exception to the service level agreement (SLA).

Which of the following BEST enables senior management to monitor the organization's risk exposure?

A.Monthly reporting on the IT risk register

B.Monthly reporting on new threats and vulnerabilities

C.Monthly reporting on information security incidents

D.Monthly reporting on changes to the risk profile

Other Version: 1862ISACA.CISM.v2024-10-14.q528; 597ISACA.CISM.v2024-07-14.q167; 702ISACA.CISM.v2024-04-24.q336; 1236ISACA.CISM.v2023-09-14.q160; 1224ISACA.CISM.v2023-09-09.q151; 1215ISACA.CISM.v2023-08-22.q180; 979ISACA.CISM.v2023-07-28.q152; 1043ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1023ISACA.CISM.v2023-03-07.q88; 4373ISACA.CISM.v2022-09-16.q374; 8259ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11771ISACA.CISM.v2022-04-15.q999

Latest Upload: 257ISACA.CGEIT.v2025-09-19.q537; 153Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 154Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 243Nutanix.NCP-US-6.5.v2025-09-16.q73; 264Oracle.1z0-071.v2025-09-16.q232; 203Oracle.1Z1-922.v2025-09-16.q125; 323CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

Download PDF File