Online Access Free ISACA.CISM.v2021-10-30.q999 Practice Test (Page 31)

CISM Exam Question 146

Which would be the BEST recommendation to protect against phishing attacks?

A.Install an antispam system

B.Publish security guidance for customers

C.Provide security awareness to the organization's staff

D.Install an application-level firewall

CISM Exam Question 147

An outsourced vendor handles an organization's business-critical data. Which of the following is the MOST effective way for the client organization to obtain assurance of the vendor's security practices?

A.Requiring periodic independent third-party reviews

B.Verifying security certifications held by the vendor

C.Requiring business continuity plans (BCPs) from the vendor

D.Reviewing the vendor's security audit reports

CISM Exam Question 148

An organization is planning to create a website that will collect site-visitor details from around the world and use them as marketing lists for operations in several countries. Which of the following should be of MOST concern to the information security manager?

A.Legislation regarding marketing in foreign countries

B.Wording of the website's policy statement on how the details will be used

C.Using cryptography for transborder data flow

D.Privacy laws in each of the countries using the details for marketing

CISM Exam Question 149

Which metric is the BEST indicator that an update to an organization's information security awareness strategy is effective?

A.A decrease in the number of incidents reported by staff

B.A decrease in the number of email viruses detected

C.An increase in the number of email viruses detected

D.An increase in the number of incidents reported by staff

CISM Exam Question 150

In which of the following system development life cycle (SDLC) phases are access control and encryption algorithms chosen?

A.Procedural design

B.Architectural design

C.System design specifications

D.Software development

Other Version: 1906ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 735ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4406ISACA.CISM.v2022-09-16.q374; 8295ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11807ISACA.CISM.v2022-04-15.q999

Latest Upload: 322ISACA.CGEIT.v2025-09-19.q537; 155Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 156Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 246Nutanix.NCP-US-6.5.v2025-09-16.q73; 266Oracle.1z0-071.v2025-09-16.q232; 204Oracle.1Z1-922.v2025-09-16.q125; 327CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISM Exam Question 146

CISM Exam Question 147

CISM Exam Question 148

CISM Exam Question 149

CISM Exam Question 150

Download PDF File