Online Access Free ISACA.CISM.v2022-04-15.q999 Practice Test (Page 52)

Which of the following BEST describes a buffer overflow?

A.A program contains a hidden and unintended function that presents a security risk.

B.A type of covert channel that captures data.

C.Malicious code designed to interfere with normal operations.

D.A function is carried out with more data than the function can handle.

When developing an information security governance framework, which of the following should be the FIRST activity?

A.Align the information security program with the organization's other risk and control activities.

B.Develop response measures to detect and ensure the closure of security breaches.

C.Integrate security within the system's development life-cycle process.

D.Develop policies and procedures to support the framework.

What should be the PRIMARY basis for establishing a recovery time objective (RTO) for a critical business application?

A.Business impact analysis (BIA) results

B.Related business benchmarks

C.Risk assessment results

D.Legal and regulatory requirements

With limited resources in the information security department, which of the following is the BEST approach for managing security risk?

A.Implement technical solutions to automate security management activities.

B.Prioritize security activities and report to management.

C.Hire additional information security staff.

D.Engage a third-party company to provide security support.

An information security program should be established PRIMARILY on the basis of:

A.the approved risk management approach.

B.data security regulatory requirements.

C.the approved information security strategy.

D.senior management input

Other Version: 1950ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 745ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4425ISACA.CISM.v2022-09-16.q374; 8333ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 14896ISACA.CISM.v2021-10-30.q999

Latest Upload: 117Microsoft.SC-400.v2025-09-20.q290; 368ISACA.CGEIT.v2025-09-19.q537; 157Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 158Scrum.SAFe-Practitioner.v2025-09-18.q63; 154Workday.Workday-Prism-Analytics.v2025-09-17.q17; 134Oracle.1Z0-1055-24.v2025-09-17.q28; 131Oracle.1Z1-182.v2025-09-17.q32; 256Nutanix.NCP-US-6.5.v2025-09-16.q73; 275Oracle.1z0-071.v2025-09-16.q232; 205Oracle.1Z1-922.v2025-09-16.q125

Download PDF File