Online Access Free ISACA.CISM.v2022-09-16.q374 Practice Test (Page 46)

CISM Exam Question 221

Which of the following messages would be MOST effective in obtaining senior management's commitment to information security management?

A.Security is a business product and not a process

B.Security supports and protects the business

C.Adopt a recognized framework with metrics

D.Effective security eliminates risk to the business

CISM Exam Question 222

An information security manager is advised by contacts in law enforcement that there is evidence that his/ her company is being targeted by a skilled gang of hackers known to use a variety of techniques, including social engineering and network penetration. The FIRST step that the security manager should take is to:

A.perform a comprehensive assessment of the organization's exposure to the hacker's techniques.

B.initiate awareness training to counter social engineering.

C.immediately advise senior management of the elevated risk.

D.increase monitoring activities to provide early detection of intrusion.

CISM Exam Question 223

It is MOST important that information security architecture be aligned with which of the following?

A.Industry best practices

B.Information technology plans

C.Information security best practices

D.Business objectives and goals

CISM Exam Question 224

An organization's HR department would like to outsource its employee system to a cloud-hosted solution due to features and cost savings offered. Management has identified this solution as a business need and wants to move forward. What should be the PRIMARY role of information security in this effort?

A.Explain security issues associated with the solution to management

B.Determine how to securely implement the solution

C.Ensure the service provider has the appropriate certifications

D.Ensure a security audit is performed of the service provider

CISM Exam Question 225

Within a security governance framework, which of the following is the MOST important characteristic of the information security committee? The committee:

A.conducts frequent reviews of the security policy

B.has established relationships with external professionals

C.has a clearly defined charter and meeting protocols

D.includes a mix of members from all levels of management

Other Version: 1906ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 735ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 8295ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11807ISACA.CISM.v2022-04-15.q999; 14859ISACA.CISM.v2021-10-30.q999

Latest Upload: 323ISACA.CGEIT.v2025-09-19.q537; 155Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 156Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 247Nutanix.NCP-US-6.5.v2025-09-16.q73; 266Oracle.1z0-071.v2025-09-16.q232; 204Oracle.1Z1-922.v2025-09-16.q125; 327CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISM Exam Question 221

CISM Exam Question 222

CISM Exam Question 223

CISM Exam Question 224

CISM Exam Question 225

Download PDF File