Online Access Free ISACA.CISM.v2024-10-14.q528 Practice Test (Page 3)

CISM Exam Question 6

When management changes the enterprise business strategy, which of the following processes should be used to evaluate the existing information security controls as well as to select new information security controls?

A.Access control management

B.Change management

C.Configuration management

D.Risk management

CISM Exam Question 7

A financial institution has identified a high risk of fraud within its credit department. Which of the following information security controls will BEST reduce the risk of fraud?

A.Mandatory time off

B.Periodic risk assessments

C.Acceptable use policy

D.Segregation of duties

CISM Exam Question 8

Which of the following would be the BEST way to maintain organization-wide support for an information security strategy?

A.Place information security awareness materials in visible locations.

B.Ensure information security objectives are understood by key stakeholders.

C.Ensure information security policies are easily accessible.

D.Monitor user activity to identify and track information security policy violations.

CISM Exam Question 9

An information security team is planning a security assessment of an existing vendor. Which of the following approaches is MOST helpful for properly scoping the assessment?

A.Review the vendor's security policy.

B.Focus the review on the infrastructure with the highest risk.

C.Determine whether the vendor follows the selected security framework rules.

D.Review controls listed in the vendor contract.

CISM Exam Question 10

An organization recently updated and published its information security policy and standards.
What should the information security manager do NEXT?

A.Communicate the changes to stakeholders.

B.Update the organization's risk register.

C.Conduct a risk assessment.

D.Develop a policy exception process.

Other Version: 597ISACA.CISM.v2024-07-14.q167; 702ISACA.CISM.v2024-04-24.q336; 1236ISACA.CISM.v2023-09-14.q160; 1227ISACA.CISM.v2023-09-09.q151; 1216ISACA.CISM.v2023-08-22.q180; 980ISACA.CISM.v2023-07-28.q152; 1044ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1023ISACA.CISM.v2023-03-07.q88; 4373ISACA.CISM.v2022-09-16.q374; 8259ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11771ISACA.CISM.v2022-04-15.q999; 14819ISACA.CISM.v2021-10-30.q999

Latest Upload: 257ISACA.CGEIT.v2025-09-19.q537; 153Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 154Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 243Nutanix.NCP-US-6.5.v2025-09-16.q73; 264Oracle.1z0-071.v2025-09-16.q232; 203Oracle.1Z1-922.v2025-09-16.q125; 323CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISM Exam Question 6

CISM Exam Question 7

CISM Exam Question 8

CISM Exam Question 9

CISM Exam Question 10

Download PDF File