Online Access Free ISACA.CISM.v2024-04-24.q336 Practice Test (Page 55)

Ensuring that an organization can conduct security reviews within third-party facilities is PRIMARILY enabled by:

A.contractual agreements.

B.service level agreements (SLAs).

C.audit guidelines.

D.acceptance of the organization s security policies.

Which of the following is MOST useful to an information security manager when conducting a post-incident review of an attack?

A.Cost of the attack to the organization

B.Location of the attacker

C.Method of operation used by the attacker

D.Details from intrusion detection system (IDS) logs

Which of the following is the MOST important action to take when engaging third-party consultants to conduct an attack and penetration test?

A.Request a list of the software to be used

B.Provide clear directions to IT staff

C.Monitor intrusion detection system (IDS) and firewall logs closely

D.Establish clear rules of engagement

What is the PRIMARY objective of a post-event review in incident response?

A.Adjust budget provisioning

B.Preserve forensic data

C.Improve the response process

D.Ensure the incident is fully documented

The MOST effective use of a risk register is to:

A.identify risks and assign roles and responsibilities for mitigation.

B.identify threats and probabilities.

C.facilitate a thorough review of all IT-related risks on a periodic basis.

D.record the annualized financial amount of expected losses due to risks.

Other Version: 1862ISACA.CISM.v2024-10-14.q528; 592ISACA.CISM.v2024-07-14.q167; 1236ISACA.CISM.v2023-09-14.q160; 1216ISACA.CISM.v2023-09-09.q151; 1215ISACA.CISM.v2023-08-22.q180; 979ISACA.CISM.v2023-07-28.q152; 1043ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1022ISACA.CISM.v2023-03-07.q88; 4368ISACA.CISM.v2022-09-16.q374; 8259ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11766ISACA.CISM.v2022-04-15.q999; 14812ISACA.CISM.v2021-10-30.q999

Latest Upload: 257ISACA.CGEIT.v2025-09-19.q537; 153Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 154Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 243Nutanix.NCP-US-6.5.v2025-09-16.q73; 263Oracle.1z0-071.v2025-09-16.q232; 203Oracle.1Z1-922.v2025-09-16.q125; 323CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

Download PDF File