Online Access Free ISACA.CISM.v2021-10-30.q999 Practice Test (Page 29)

CISM Exam Question 136

An information security manager has identified multiple areas of compliance risk that could subject the organization to significant penalties regarding the handling of personal data. Which of the following is the manager s BEST course of action?

A.Prioritize the risk and present it to senior management.

B.Seek human resources advice to make appropriate changes to the information security policy.

C.Immediately update the information security policy to address protection of personal data

D.Implement information masking controls to hide personal data

CISM Exam Question 137

Which of the following provides the BEST means of ensuring business units outside of IT have their information security concerns addressed?

A.Targeted user security awareness programs for business units outside of IT

B.Inclusion of business unit management In the Information security steering committee

C.Involvement of senior management in information security policy development

D.A comprehensive list of business processes performed by each business unit

CISM Exam Question 138

Which of the following is the BEST control to minimize the risk associated with loss of information as a result of ransomware exploiting a zero-day vulnerability?

A.A security operation center

B.A patch management process

C.A public key infrastructure

D.A data recovery process

CISM Exam Question 139

Which of the following is the MAIN concern when securing emerging technologies?

A.Compatibility with legacy systems

B.Applying the corporate hardening standards

C.Integrating with existing access controls

D.Unknown vulnerabilities

CISM Exam Question 140

What should be an organization'.MAIN concern when evaluating an Infrastructure as a Service (laaS) cloud computing model for an e-commerce application?

A.Internal audit requirements

B.Where the application resides

C.Availability of providers services

D.Application ownership

Other Version: 1898ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 729ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4405ISACA.CISM.v2022-09-16.q374; 8287ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11798ISACA.CISM.v2022-04-15.q999

Latest Upload: 306ISACA.CGEIT.v2025-09-19.q537; 155Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 156Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 246Nutanix.NCP-US-6.5.v2025-09-16.q73; 266Oracle.1z0-071.v2025-09-16.q232; 203Oracle.1Z1-922.v2025-09-16.q125; 326CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISM Exam Question 136

CISM Exam Question 137

CISM Exam Question 138

CISM Exam Question 139

CISM Exam Question 140

Download PDF File