Online Access Free ISACA.CISM.v2021-10-30.q999 Practice Test (Page 48)

CISM Exam Question 231

What should the information security manager do FIRST when end users express that new security controls are too restrictive?

A.Obtain process owner buy-in to remove the controls.

B.Perform a cost-benefit analysis on modifying the control environment

C.Conduct a business impact analysis (BIA).

D.Perform a risk assessment on modifying the control environment.

CISM Exam Question 232

Which of the following is the MAIN objective of classifying a security incident as soon as it is discovered?

A.Downgrading the impact of the incident

B.Enabling appropriate incident investigation

C.Engaging appropriate resources

D.Preserving relevant evidence

CISM Exam Question 233

An information security manager is advised by contacts in law enforcement that there is evidence that his/ her company is being targeted by a skilled gang of hackers known to use a variety of techniques, including social engineering and network penetration. The FIRST step that the security manager should take is to:

A.perform a comprehensive assessment of the organization's exposure to the hacker's techniques.

B.initiate awareness training to counter social engineering.

C.immediately advise senior management of the elevated risk.

D.increase monitoring activities to provide early detection of intrusion.

CISM Exam Question 234

Which of the following situations would MOST inhibit the effective implementation of security governance:

A.The complexity of technology

B.Budgetary constraints

C.Conflicting business priorities

D.High-level sponsorship

CISM Exam Question 235

An information security manager has discovered an external break-in to the corporate network Which of the following actions should be taken FIRST?

A.Switch on trace logging

B.Shut down the network

C.Copy event logs to a different server

D.isolate the affected portion of the network

Other Version: 1941ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 745ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4425ISACA.CISM.v2022-09-16.q374; 8332ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11842ISACA.CISM.v2022-04-15.q999

Latest Upload: 105Microsoft.SC-400.v2025-09-20.q290; 364ISACA.CGEIT.v2025-09-19.q537; 156Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 158Scrum.SAFe-Practitioner.v2025-09-18.q63; 154Workday.Workday-Prism-Analytics.v2025-09-17.q17; 133Oracle.1Z0-1055-24.v2025-09-17.q28; 131Oracle.1Z1-182.v2025-09-17.q32; 256Nutanix.NCP-US-6.5.v2025-09-16.q73; 274Oracle.1z0-071.v2025-09-16.q232; 205Oracle.1Z1-922.v2025-09-16.q125

CISM Exam Question 231

CISM Exam Question 232

CISM Exam Question 233

CISM Exam Question 234

CISM Exam Question 235

Download PDF File