Online Access Free ISACA.CISM.v2021-10-30.q999 Practice Test (Page 70)

CISM Exam Question 341

Which of the following risks would BEST be assessed using quantitative risk assessment techniques?

A.Customer data stolen

B.An electrical power outage

C.A web site defaced by hackers

D.Loss of the software development team

CISM Exam Question 342

Which of the following is the BEST strategy to implement an effective operational security posture?

A.Increased security awareness

B.Vulnerability management

C.Defense in depth

D.Threat management

CISM Exam Question 343

In a large organization, defining recovery time objectives (RTOs) is PRIMARILY the responsibility of;

A.the business unit manager.

B.senior management

C.the information security manager.

D.the IT manager

CISM Exam Question 344

A project manager is developing a developer portal and requests that the security manager assign a public IP address so that it can be accessed by in-house staff and by external consultants outside the organization's local area network (LAN). What should the security manager do FIRST?

A.Understand the business requirements of the developer portal

B.Perform a vulnerability assessment of the developer portal

C.Install an intrusion detection system (IDS)

D.Obtain a signed nondisclosure agreement (NDA) from the external consultants before allowing external access to the server

CISM Exam Question 345

An information security manager is reviewing a contract with a third-party service provider. Which of the following issues should be of MOST concern?

A.The provider states the client is responsible for data classification.

B.The provider lacks compliance certification.

C.There is no provision for a right to audit.

D.Penalties for breach of contract are not defined.

Other Version: 1971ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 745ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1233ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4425ISACA.CISM.v2022-09-16.q374; 8333ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11894ISACA.CISM.v2022-04-15.q999

Latest Upload: 170Microsoft.SC-400.v2025-09-20.q290; 395ISACA.CGEIT.v2025-09-19.q537; 160Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 161Scrum.SAFe-Practitioner.v2025-09-18.q63; 155Workday.Workday-Prism-Analytics.v2025-09-17.q17; 136Oracle.1Z0-1055-24.v2025-09-17.q28; 131Oracle.1Z1-182.v2025-09-17.q32; 264Nutanix.NCP-US-6.5.v2025-09-16.q73; 284Oracle.1z0-071.v2025-09-16.q232; 205Oracle.1Z1-922.v2025-09-16.q125

CISM Exam Question 341

CISM Exam Question 342

CISM Exam Question 343

CISM Exam Question 344

CISM Exam Question 345

Download PDF File