Online Access Free ISACA.CISM.v2022-08-01.q522 Practice Test (Page 37)

CISM Exam Question 176

An organization finds unauthorized software has been installed on a number of workstations. The software was found to contain a Trojan, which had been uploading data to an unknown external party. Which of the following would have BEST prevented the installation of the unauthorized software?

A.Implementing an intrusion detection system (IDS)

B.Banning executable file downloads at the Internet firewall

C.Removing local administrator rights

D.Implementing application blacklisting

CISM Exam Question 177

When reporting to senior management on an information security vulnerability that could lead to a potential breach, what information is MOST likely to facilitate the decision-making process?

A.Cost to remediate

B.Regulatory requirements

C.Business impact

D.Risk treatment options

CISM Exam Question 178

The effectiveness of security awareness programs in fostering positive security cultures is MOST dependent upon employee:

A.ability to carry out security-related procedures.

B.understanding of the penalties for noncompliance.

C.awareness of regulatory requirements.

D.ownership of security responsibilities.

CISM Exam Question 179

Which of the following should be of GREATEST concern to an information security manager when establishing a set of key risk indicators (KRIs)?

A.The impact of security risk on organizational objectives is not well understood

B.Risk tolerance levels have not yet been established

C.Several business functions have been outsourced to third-party vendors.

D.The organization has no historical data on previous security events

CISM Exam Question 180

The MAIN reason for internal certification of web-based business applications is to ensure:

A.compliance with industry standards-

B.changes to the organizational policy framework are identified,

C.up-to-date web technology is being used.

D.compliance with organizational policies.

Other Version: 1915ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 744ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4414ISACA.CISM.v2022-09-16.q374; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11808ISACA.CISM.v2022-04-15.q999; 14861ISACA.CISM.v2021-10-30.q999

Latest Upload: 342ISACA.CGEIT.v2025-09-19.q537; 155Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 156Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 132Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 250Nutanix.NCP-US-6.5.v2025-09-16.q73; 266Oracle.1z0-071.v2025-09-16.q232; 204Oracle.1Z1-922.v2025-09-16.q125; 329CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISM Exam Question 176

CISM Exam Question 177

CISM Exam Question 178

CISM Exam Question 179

CISM Exam Question 180

Download PDF File