Online Access Free ISACA.CISM.v2022-09-16.q374 Practice Test (Page 45)

CISM Exam Question 216

During an annual security review of an organization's servers, it was found that the customer service team's file server, which contains sensitive customer data, is accessible to all user IDs in the organization. Which of the following should the information security manager do FIRST?

A.Report the situation to the data owner

B.Remove access privileges to the folder containing the data

C.Isolate the server from the network

D.Train the customer service team on properly controlling file permissions

CISM Exam Question 217

The FIRST step in establishing a security governance program is to:

A.conduct a risk assessment.

B.conduct a workshop for all end users.

C.prepare a security budget.

D.obtain high-level sponsorship.

CISM Exam Question 218

Before conducting a formal risk assessment of an organization's information resources, an information security manager should FIRST:

A.map the major threats to business objectives.

B.review available sources of risk information.

C.identify the value of the critical assets.

D.determine the financial impact if threats materialize.

CISM Exam Question 219

The MOST likely cause of a security information event monitoring (SIEM) solution failing to identify a serious incident is that the system:

A.is not collecting logs from relevant devices.

B.has not been updated with the latest patches.

C.is hosted by a cloud service provider.

D.has performance issues.

CISM Exam Question 220

An organization has acquired a company in a foreign country to gain an advantage in a new market Which of the following is the FIRST step the information security manager should take?

A.Apply the existing information security program to the acquired company

B.Merge the two existing information security programs

C.Determine which country's information security regulations will be used

D.Evaluate the information security laws that apply to the acquired company

Other Version: 1915ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 744ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 8304ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11816ISACA.CISM.v2022-04-15.q999; 14863ISACA.CISM.v2021-10-30.q999

Latest Upload: 343ISACA.CGEIT.v2025-09-19.q537; 155Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 156Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 132Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 250Nutanix.NCP-US-6.5.v2025-09-16.q73; 266Oracle.1z0-071.v2025-09-16.q232; 204Oracle.1Z1-922.v2025-09-16.q125; 329CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISM Exam Question 216

CISM Exam Question 217

CISM Exam Question 218

CISM Exam Question 219

CISM Exam Question 220

Download PDF File