Online Access Free ISACA.CISM.v2023-07-28.q152 Practice Test (Page 25)

CISM Exam Question 116

An information security team has discovered that users are sharing a login account to an application with sensitive information, in violation of the access policy. Business management indicates that the practice creates operational efficiencies. What is the information security manager's BEST course of action?

A.Modify the policy.

B.Enforce the policy.

C.Create an exception for the deviation.

D.Present the risk to senior management.

CISM Exam Question 117

A recovery point objective (RPO) is required in which of the following?

A.Business continuity plan (BCP)

B.Incident response plan

C.Information security plan

D.Disaster recovery plan (DRP)

CISM Exam Question 118

The fundamental purpose of establishing security metrics is to:

A.increase return on investment (ROI)

B.provide feedback on control effectiveness

C.adopt security best practices

D.establish security benchmarks

CISM Exam Question 119

Which of the following is the PRIMARY reason for granting a security exception?

A.The risk is justified by the cost to the business.

B.The risk is justified by the cost to security.

C.The risk is justified by the benefit to security.

D.The risk is justified by the benefit to the business.

CISM Exam Question 120

Which of the following should be the PRIMARY basis for a severity hierarchy for information security incident classification?

A.Availability of resources

B.Root cause analysis results

C.Adverse effects on the business

D.Legal and regulatory requirements

Premium Bundle

Newest CISM Exam PDF Dumps shared by Actual4test.com for Helping Passing CISM Exam! Actual4test.com now offer the updated CISM exam dumps, the Actual4test.com CISM exam questions have been updated and answers have been corrected get the latest Actual4test.com CISM pdf dumps with Exam Engine here:

Access CISM Premium Version

(964 Q&As Dumps, 30%OFF Special Discount: Freepdfdumps)

Other Version: 1875ISACA.CISM.v2024-10-14.q528; 603ISACA.CISM.v2024-07-14.q167; 707ISACA.CISM.v2024-04-24.q336; 1252ISACA.CISM.v2023-09-14.q160; 1232ISACA.CISM.v2023-09-09.q151; 1219ISACA.CISM.v2023-08-22.q180; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4379ISACA.CISM.v2022-09-16.q374; 8259ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11771ISACA.CISM.v2022-04-15.q999; 14824ISACA.CISM.v2021-10-30.q999

Latest Upload: 257ISACA.CGEIT.v2025-09-19.q537; 153Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 154Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 243Nutanix.NCP-US-6.5.v2025-09-16.q73; 264Oracle.1z0-071.v2025-09-16.q232; 203Oracle.1Z1-922.v2025-09-16.q125; 324CyberArk.PAM-CDE-RECERT.v2025-09-15.q100