Online Access Free ISACA.CISM.v2024-04-24.q336 Practice Test (Page 37)

CISM Exam Question 176

Which of the following should an information security manager do FIRST after discovering that a business unit has implemented a newly purchased application and bypassed the change management process?

A.Revise the procurement process.

B.Discuss the issue with senior leadership.

C.Update the change management process.

D.Remove the application from production.

CISM Exam Question 177

When developing an information security program, what is the MOST useful source of information for determining available resources?

A.Proficiency test

B.Job descriptions

C.Organization chart

D.Skills inventory

CISM Exam Question 178

A daily monitoring report reveals that an IT employee made a change to a firewall rule outside of the change control process. The information security manager's FIRST step in addressing the issue should be to:

A.require that the change be reversed

B.review the change management process

C.perform an analysis of the change

D.report the event to senior management

CISM Exam Question 179

Reviewing security objectives and ensuring the integration of security across business units is PRIMARILY the focus of the:

A.chief information security officer (CISO).

B.board of directors.

C.steering committee.

D.executive management

CISM Exam Question 180

Which of the following is the FIRST step when defining and prioritizing security controls to be implemented under an information security program?

A.Understand the company's risk appetite and its alignment with the information security strategy

B.Review the applicable regulations tn place and their impact to each business function

C.Interview function owners across the company to determine the best plan of action.

D.Review recent information security incidents to determine organizational focus areas and priorities

Other Version: 1906ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4414ISACA.CISM.v2022-09-16.q374; 8295ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11807ISACA.CISM.v2022-04-15.q999; 14860ISACA.CISM.v2021-10-30.q999

Latest Upload: 324ISACA.CGEIT.v2025-09-19.q537; 155Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 156Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 247Nutanix.NCP-US-6.5.v2025-09-16.q73; 266Oracle.1z0-071.v2025-09-16.q232; 204Oracle.1Z1-922.v2025-09-16.q125; 327CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISM Exam Question 176

CISM Exam Question 177

CISM Exam Question 178

CISM Exam Question 179

CISM Exam Question 180

Download PDF File