Online Access Free ISACA.CISM.v2021-10-30.q999 Practice Test (Page 85)

CISM Exam Question 416

A recent audit has identified that security controls by the organization's policies have not been implemented for a particular application. What should the information security manager do NEXT to address this issue?

A.Discuss the issue with the data owners to determine the reason for the exception

B.Discuss the issue with data custodians to determine the reason for the exception

C.Report the issue to senior management and request funding to fix the issue

D.Deny access to the application until the issue is resolved

CISM Exam Question 417

When an emergency security patch is received via electronic mail, the patch should FIRST be:

A.loaded onto an isolated test machine.

B.decompiled to check for malicious code.

C.validated to ensure its authenticity.

D.copied onto write-once media to prevent tampering.

CISM Exam Question 418

Which of the following should be determined while defining risk management strategies?

A.Risk assessment criteria

B.Organizational objectives and risk appetite

C.IT architecture complexity

D.Enterprise disaster recovery plans

CISM Exam Question 419

Conflicting objectives are MOST likely to compromise the effectiveness of the information security process when information security management is:

A.partially staffed by external security consultants

B.outside of information technology

C.combined with the change management function.

D.reporting to the network infrastructure manager.

CISM Exam Question 420

Which of the following is the initial step in creating a firewall policy?

A.A cost-benefit analysis of methods for securing the applications

B.Identification of network applications to be externally accessed

C.Identification of vulnerabilities associated with network applications to be externally accessed

D.Creation of an applications traffic matrix showing protection methods

Other Version: 1977ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 745ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1233ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4425ISACA.CISM.v2022-09-16.q374; 8334ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11930ISACA.CISM.v2022-04-15.q999

Latest Upload: 171Microsoft.SC-400.v2025-09-20.q290; 403ISACA.CGEIT.v2025-09-19.q537; 163Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 165Scrum.SAFe-Practitioner.v2025-09-18.q63; 163Workday.Workday-Prism-Analytics.v2025-09-17.q17; 144Oracle.1Z0-1055-24.v2025-09-17.q28; 141Oracle.1Z1-182.v2025-09-17.q32; 276Nutanix.NCP-US-6.5.v2025-09-16.q73; 292Oracle.1z0-071.v2025-09-16.q232; 220Oracle.1Z1-922.v2025-09-16.q125

CISM Exam Question 416

CISM Exam Question 417

CISM Exam Question 418

CISM Exam Question 419

CISM Exam Question 420

Download PDF File