Online Access Free ISACA.CISM.v2021-10-30.q999 Practice Test (Page 199)

CISM Exam Question 986

An organization has decided to implement additional security controls to treat the risks of a new process. This is an example of:

A.eliminating the risk.

B.transferring the risk.

C.mitigating the risk.

D.accepting the risk.

CISM Exam Question 987

When developing an incident response plan, the information security manager should:

A.include response scenarios that have been approved previously by business management.

B.determine recovery time objectives (RTOs).

C.allow IT to decide which systems can be removed from the infrastructure.

D.require IT to invoke the business continuity plan.

CISM Exam Question 988

An organization's operations have been significantly impacted by a cyber attack resulting in data loss. Once the attack has been contained, what should the security team.

A.Update the incident response plan.

B.Implement compensating controls.

C.Perform a root cause analysis.

D.Conduct a lessons learned exercise.

CISM Exam Question 989

When an information security manager is developing a strategic plan for information security, the timeline for the plan should be:

A.aligned with the IT strategic plan.

B.based on the current rate of technological change.

C.three-to-five years for both hardware and software.

D.aligned with the business strategy.

CISM Exam Question 990

Which of the following metrics would provide management with the MOST useful information about the progress of a security awareness program?

A.Increased number of downloads of the organization's security policy

B.Decreased number of security incidents

C.Completion rate of user awareness training within each business unit

D.Increased reported of security incidents

Other Version: 491ISACA.CISM.v2026-02-06.q450; 1913ISACA.CISM.v2025-12-21.q445; 2595ISACA.CISM.v2024-10-14.q528; 895ISACA.CISM.v2024-07-14.q167; 1302ISACA.CISM.v2024-04-24.q336; 1624ISACA.CISM.v2023-09-14.q160; 1626ISACA.CISM.v2023-09-09.q151; 1453ISACA.CISM.v2023-08-22.q180; 1400ISACA.CISM.v2023-07-28.q152; 1377ISACA.CISM.v2023-05-16.q111; 1380ISACA.CISM.v2023-05-10.q114; 1266ISACA.CISM.v2023-03-07.q88; 5224ISACA.CISM.v2022-09-16.q374; 9322ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 13375ISACA.CISM.v2022-04-15.q999

Latest Upload: 142CrowdStrike.CCSE-204.v2026-06-12.q25; 161VMware.2V0-17.25.v2026-06-12.q49; 150Appian.ACA-100.v2026-06-11.q23; 208CompTIA.220-1202.v2026-06-11.q114; 163CheckPoint.156-590.v2026-06-11.q47; 224CompTIA.220-1202.v2026-06-10.q109; 204CertiProf.CEHPC.v2026-06-10.q54; 151Hitachi.HQT-4160.v2026-06-10.q25; 402PMI.PMI-ACP-CN.v2026-06-09.q453; 192Splunk.SPLK-5002.v2026-06-08.q52

CISM Exam Question 986

CISM Exam Question 987

CISM Exam Question 988

CISM Exam Question 989

CISM Exam Question 990

Download PDF File