Online Access Free ISACA.CISM.v2022-04-15.q999 Practice Test (Page 36)

CISM Exam Question 171

The BEST way to mitirate the risk associated with a social engineering attack is to:

A.perform a business risk assessment of the email filtering system.

B.implement multi-factor authentication on critical business systems.

C.deploy an effective intrusion detection system (IDS).

D.perform a user-knowledge gap assessment of information security practices.

CISM Exam Question 172

Reevaluation of risk is MOST critical when there is:

A.a change in security policy.

B.resistance to the implementation of mitigating controls.

C.a change in the threat landscape.

D.a management request for updated security reports.

CISM Exam Question 173

Which of the following is the BEST approach to identify noncompliance issues with legal, regulatory, and contractual requirements?

A.Risk assessment

B.Business impact analysis (BIA)

C.Vulnerability assessment

D.Gap analysis

CISM Exam Question 174

If an organization considers taking legal action on a security incident, the information security manager should focus PRIMARILY on:

A.obtaining evidence as soon as possible.

B.preserving the integrity of the evidence.

C.disconnecting all IT equipment involved.

D.reconstructing the sequence of events.

CISM Exam Question 175

An IS manager has decided to implement a security system to monitor access to the Internet and prevent access to numerous sites. Immediately upon installation, employees Hood the IT helpdesk with complaints of being unable to perform business functions on Internet sites. This is an example of:

A.conflicting security controls with organizational needs.

B.strong protection of information resources.

C.implementing appropriate controls to reduce risk.

D.proving information security's protective abilities.

Other Version: 1915ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 744ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4415ISACA.CISM.v2022-09-16.q374; 8304ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 14861ISACA.CISM.v2021-10-30.q999

Latest Upload: 343ISACA.CGEIT.v2025-09-19.q537; 155Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 156Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 132Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 250Nutanix.NCP-US-6.5.v2025-09-16.q73; 266Oracle.1z0-071.v2025-09-16.q232; 204Oracle.1Z1-922.v2025-09-16.q125; 329CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISM Exam Question 171

CISM Exam Question 172

CISM Exam Question 173

CISM Exam Question 174

CISM Exam Question 175

Download PDF File