Online Access Free ISACA.CISM.v2021-10-30.q999 Practice Test (Page 55)

CISM Exam Question 266

An information security manager is asked to provide evidence that the organization is fulfilling its legal obligation to protect personally identifiable information (PII).
Which of the following would be

A.Privacy awareness training

B.Risk assessments of privacy-related applications

C.Written policies and standards

D.Metrics related to program effectiveness

CISM Exam Question 267

The security responsibility of data custodians in an organization will include:

A.assuming overall protection of information assets.

B.determining data classification levels.

C.implementing security controls in products they install.

D.ensuring security measures are consistent with policy.

CISM Exam Question 268

An organization has an approved bring your own device (BYOD) program. Which of the following is the MOST effective method to enforce application control on personal devices?

A.Establish a mobile device acceptable use policy.

B.Implement a mobile device management solution.

C.Educate users regarding the use of approved applications.

D.Implement a web application firewall.

CISM Exam Question 269

When designing security controls, it is MOST important to:

A.apply a risk-based approach.

B.focus on preventive controls.

C.evaluate the costs associated with the controls.

D.apply controls to confidential information.

CISM Exam Question 270

An organization has adopted a practice of regular staff rotation to minimize the risk of fraud and encourage cross training. Which type of authorization policy would BEST address this practice?

A.Multilevel

B.Role-based

C.Discretionary

D.Attribute-based

Other Version: 1961ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 745ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1233ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4425ISACA.CISM.v2022-09-16.q374; 8333ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11858ISACA.CISM.v2022-04-15.q999

Latest Upload: 131Microsoft.SC-400.v2025-09-20.q290; 370ISACA.CGEIT.v2025-09-19.q537; 157Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 158Scrum.SAFe-Practitioner.v2025-09-18.q63; 154Workday.Workday-Prism-Analytics.v2025-09-17.q17; 134Oracle.1Z0-1055-24.v2025-09-17.q28; 131Oracle.1Z1-182.v2025-09-17.q32; 257Nutanix.NCP-US-6.5.v2025-09-16.q73; 275Oracle.1z0-071.v2025-09-16.q232; 205Oracle.1Z1-922.v2025-09-16.q125

CISM Exam Question 266

CISM Exam Question 267

CISM Exam Question 268

CISM Exam Question 269

CISM Exam Question 270

Download PDF File