Online Access Free ISACA.CISM.v2022-04-15.q999 Practice Test (Page 113)

Which of the following is the BEST approach for an information security manager to effectively manage third-party risk?

A.Ensure risk management efforts are commensurate with risk exposure.

B.Ensure controls are implemented to address changes in risk.

C.Ensure vendor governance controls are in place.

D.Ensure senior management has approved the vendor relationship.

Which of the following would be MOST effective in ensuring that information security is appropriately addressed in new systems?

A.Internal audit signs off on security prior to implementation

B.Information security staff perform compliance reviews before production begins

C.Information security staff take responsibility for the design of system security

D.Business requirements must include security objectives

An effective way of protecting applications against Structured Query Language (SQL) injection vulnerability is to:

A.validate and sanitize client side inputs.

B.harden the database listener component.

C.normalize the database schema to the third normal form.

D.ensure that the security patches are updated on operating systems.

Which of the following is MOST critical for prioritizing actions in a business continuity plan (BCP)?

A.Asset classification

B.Risk assessment

C.Business impact analysis (BIA)

D.Business process mapping

The PRIMARY objective of an Internet usage policy is to prevent:

A.access to inappropriate sites.

B.downloading malicious code.

C.violation of copyright laws.

D.disruption of Internet access.

Other Version: 1971ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 745ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1233ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4425ISACA.CISM.v2022-09-16.q374; 8334ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 14955ISACA.CISM.v2021-10-30.q999

Latest Upload: 171Microsoft.SC-400.v2025-09-20.q290; 401ISACA.CGEIT.v2025-09-19.q537; 162Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 163Scrum.SAFe-Practitioner.v2025-09-18.q63; 161Workday.Workday-Prism-Analytics.v2025-09-17.q17; 143Oracle.1Z0-1055-24.v2025-09-17.q28; 139Oracle.1Z1-182.v2025-09-17.q32; 271Nutanix.NCP-US-6.5.v2025-09-16.q73; 288Oracle.1z0-071.v2025-09-16.q232; 219Oracle.1Z1-922.v2025-09-16.q125

Download PDF File