Online Access Free ISACA.CISM.v2024-04-24.q336 Practice Test (Page 42)

After obtaining commitment from senior management, which of the following should be completed NEXT when establishing an information security program?

A.Define security metrics

B.Conduct a risk assessment

C.Perform a gap analysis

D.Procure security tools

The PRIMARY objective of a security steering group is to:

A.ensure information security covers all business functions.

B.ensure information security aligns with business goals.

C.raise information security awareness across the organization.

D.implement all decisions on security management across the organization.

Within the confidentiality, integrity, and availability (CIA) triad, which of the following activities BEST supports the concept of integrity?

A.Enforcing service level agreements

B.Implementing a data classification schema

C.Ensuring encryption for data in transit

D.Utilizing a formal change management process

A global organization has developed a strategy to share a customer information database between offices in two countries. In this situation, it is

A.data sharing complies with local laws and regulations at both locations.

B.risk coverage is split between the two locations sharing data.

C.a nondisclosure agreement is signed.

D.data is encrypted in transit and at rest.

Which of the following should the information security manager do FIRST after a security incident has been reported?

A.Determine the degree of loss resulting from the incident.

B.Identify the possible source of attack.

C.Identify the scope and size of the affected environment.

D.Retrieve the information needed to confirm the incident.

Other Version: 1901ISACA.CISM.v2024-10-14.q528; 606ISACA.CISM.v2024-07-14.q167; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4405ISACA.CISM.v2022-09-16.q374; 8287ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11798ISACA.CISM.v2022-04-15.q999; 14852ISACA.CISM.v2021-10-30.q999

Latest Upload: 306ISACA.CGEIT.v2025-09-19.q537; 155Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 156Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 246Nutanix.NCP-US-6.5.v2025-09-16.q73; 266Oracle.1z0-071.v2025-09-16.q232; 203Oracle.1Z1-922.v2025-09-16.q125; 326CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

Download PDF File