Online Access Free ISACA.CISM.v2023-05-10.q114 Practice Test (Page 10)

During the initiation phase of the system development life cycle (SDLC) for a software project, information security activities should address:

A.cost-benefit analyses.

B.security objectives.

C.baseline security controls.

D.benchmarking security metrics.

Which of the following BEST supports the incident management process for attacks on an organization's supply chain?

A.Including service level agreements (SLAs) in vendor contracts

B.Performing integration testing with vendor systems

C.Establishing communication paths with vendors

D.Requiring security awareness training for vendor staff

Which of the following is the BEST approach when creating a security policy for a global organization subject to varying laws and regulations?

A.Incorporate policy statements derived from third-party standards and benchmarks.

B.Adhere to a unique corporate privacy and security standard

C.Establish baseline standards for all locations and add supplemental standards as required

D.Require that all locations comply with a generally accepted set of industry

Which of the following defines the triggers within a business continuity plan (BCP)? @

A.Gap analysis

B.Disaster recovery plan (DRP)

C.Needs of the organization

D.Information security policy

Which of the following is the BEST evidence of alignment between corporate and information security governance?

A.Senior management sponsorship

B.Regular security policy reviews

C.Security key performance indicators (KPIs)

D.Project resource optimization

Other Version: 1853ISACA.CISM.v2024-10-14.q528; 570ISACA.CISM.v2024-07-14.q167; 678ISACA.CISM.v2024-04-24.q336; 1233ISACA.CISM.v2023-09-14.q160; 1202ISACA.CISM.v2023-09-09.q151; 1198ISACA.CISM.v2023-08-22.q180; 976ISACA.CISM.v2023-07-28.q152; 1023ISACA.CISM.v2023-05-16.q111; 1007ISACA.CISM.v2023-03-07.q88; 4352ISACA.CISM.v2022-09-16.q374; 8230ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11739ISACA.CISM.v2022-04-15.q999; 14797ISACA.CISM.v2021-10-30.q999

Latest Upload: 218ISACA.CGEIT.v2025-09-19.q537; 152Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 153Scrum.SAFe-Practitioner.v2025-09-18.q63; 141Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 128Oracle.1Z1-182.v2025-09-17.q32; 234Nutanix.NCP-US-6.5.v2025-09-16.q73; 255Oracle.1z0-071.v2025-09-16.q232; 195Oracle.1Z1-922.v2025-09-16.q125; 314CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

Download PDF File