Online Access Free ISACA.CISM.v2021-10-30.q999 Practice Test (Page 76)

A possible breach of an organization's IT system is reported by the project manager. What is the FIRST thing the incident response manager should do?

A.Run a port scan on the system

B.Disable the logon ID

C.Investigate the system logs

D.Validate the incident

Who should be PRIMARILY responsible for defining a security asset classification scheme?

A.Information security manager

B.Network security manager

C.Legal counsel

D.Business unit manager

When implementing a new risk assessment methodology, which of the following is the MOST important requirement?

A.Risk assessments must be conducted by certified staff.

B.Risk assessments must be reviewed annually.

C.The methodology must be approved by the chief executive officer.

D.The methodology used must be consistent across the organization.

When aligning an organization's information security program with other risk and control activities, it is MOST important to:

A.develop an information security governance framework.

B.have information security management report to the chief risk officer.

C.ensure adequate financial resources are available.

D.integrate security within the system development life cycle.

The MOST effective way to ensure that outsourced service providers comply with the organization's information security policy would be:

A.service level monitoring.

B.penetration testing.

C.periodically auditing.

D.security awareness training.

Other Version: 1971ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 745ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1233ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4425ISACA.CISM.v2022-09-16.q374; 8334ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11912ISACA.CISM.v2022-04-15.q999

Latest Upload: 171Microsoft.SC-400.v2025-09-20.q290; 401ISACA.CGEIT.v2025-09-19.q537; 162Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 163Scrum.SAFe-Practitioner.v2025-09-18.q63; 162Workday.Workday-Prism-Analytics.v2025-09-17.q17; 143Oracle.1Z0-1055-24.v2025-09-17.q28; 139Oracle.1Z1-182.v2025-09-17.q32; 271Nutanix.NCP-US-6.5.v2025-09-16.q73; 288Oracle.1z0-071.v2025-09-16.q232; 219Oracle.1Z1-922.v2025-09-16.q125

Download PDF File