Online Access Free ISACA.CISM.v2022-08-01.q522 Practice Test (Page 77)

CISM Exam Question 376

The MOST effective way to communicate the level of impact of information security risks on organizational objectives is to present:

A.business impact analysis (BIA) results.

B.detailed threat analysis results.

C.risk treatment options.

D.a risk heat map.

CISM Exam Question 377

When developing metrics related to an organization's information security program, what information will provide the MOST value to enable strategic decision-making?

A.How well information security risk is being predicted

B.How many security incidents are reported each month

C.How frequently the information security risk register is updated

D.How long it takes security incidents to be closed

CISM Exam Question 378

Which of the following MOST effectively prevents internal users from modifying sensitive data?

A.Multi-factor authentication -

B.Role-based access controls

C.Acceptable use policies

D.Network segmentation

CISM Exam Question 379

Which of the following is the MOST important consideration when presenting objectives and benefits of an information security program to nontechnical stakeholders?

A.Using measurable terms

B.Using financial metrics

C.Using technical terms

D.Using business terms

CISM Exam Question 380

A team developing an interface to a key financial system has identified a security flaw in one of the libraries. Remediating the flaw would require major system redesign. What should the information security manager do NEXT?

A.Conduct a comprehensive source code review.

B.Hire a consultant to design proper remediation controls.

C.Instruct the development team to remediate the flaw.

D.Confirm the impact with the business owner.

Other Version: 1897ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 726ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4397ISACA.CISM.v2022-09-16.q374; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11790ISACA.CISM.v2022-04-15.q999; 14844ISACA.CISM.v2021-10-30.q999

Latest Upload: 306ISACA.CGEIT.v2025-09-19.q537; 155Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 156Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 245Nutanix.NCP-US-6.5.v2025-09-16.q73; 266Oracle.1z0-071.v2025-09-16.q232; 203Oracle.1Z1-922.v2025-09-16.q125; 326CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISM Exam Question 376

CISM Exam Question 377

CISM Exam Question 378

CISM Exam Question 379

CISM Exam Question 380

Download PDF File