Online Access Free ISACA.CISM.v2022-04-15.q999 Practice Test (Page 86)

CISM Exam Question 421

The purpose of a corrective control is to:

A.reduce adverse events.

B.indicate compromise.

C.mitigate impact.

D.ensure compliance.

CISM Exam Question 422

A benefit of using a full disclosure (white box) approach as compared to a blind (black box) approach to penetration testing is that:

A.it simulates the real-life situation of an external security attack.

B.human intervention is not required for this type of test.

C.less time is spent on reconnaissance and information gathering.

D.critical infrastructure information is not revealed to the tester.

CISM Exam Question 423

Which of the following would represent a violation of the chain of custody when a backup tape has been identified as evidence in a fraud investigation? The tape was:

A.removed into the custody of law enforcement investigators.

B.kept in the tape library' pending further analysis.

C.sealed in a signed envelope and locked in a safe under dual control.

D.handed over to authorized independent investigators.

CISM Exam Question 424

An attacker was able to gain access to an organization's perimeter firewall and made changes to allow wider external access and to steal data. Which of the following would have provided timely identification of this incident?

A.Deploying an intrusion prevention system (IPS)

B.Implementing a data loss prevention (DLP) suite

C.Deploying a security information and event management system (SIEM)

D.Conducting regular system administrator awareness training

CISM Exam Question 425

What is the GREATEST advantage of documented guidelines and operating procedures from a security perspective?

A.Provide detailed instructions on how to carry out different types of tasks

B.Ensure consistency of activities to provide a more stable environment

C.Ensure compliance to security standards and regulatory requirements

D.Ensure reusability to meet compliance to quality requirements

Other Version: 1971ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 745ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1233ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4425ISACA.CISM.v2022-09-16.q374; 8334ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 14964ISACA.CISM.v2021-10-30.q999

Latest Upload: 171Microsoft.SC-400.v2025-09-20.q290; 402ISACA.CGEIT.v2025-09-19.q537; 162Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 163Scrum.SAFe-Practitioner.v2025-09-18.q63; 162Workday.Workday-Prism-Analytics.v2025-09-17.q17; 143Oracle.1Z0-1055-24.v2025-09-17.q28; 140Oracle.1Z1-182.v2025-09-17.q32; 274Nutanix.NCP-US-6.5.v2025-09-16.q73; 289Oracle.1z0-071.v2025-09-16.q232; 219Oracle.1Z1-922.v2025-09-16.q125

CISM Exam Question 421

CISM Exam Question 422

CISM Exam Question 423

CISM Exam Question 424

CISM Exam Question 425

Download PDF File