Online Access Free ISACA.CISM.v2024-10-14.q528 Practice Test (Page 31)

CISM Exam Question 146

Which of the following is the BEST way for an information security manager to justify ongoing annual maintenance fees associated with an intrusion prevention system (IPS)?

A.Provide yearly competitive pricing to illustrate the value of the IPS.

B.Perform industry research annually and document the overall ranking of the IPS.

C.Perform a penetration test to demonstrate the ability to protect.

D.Establish and present appropriate metrics that track performance.

CISM Exam Question 147

A CISO learns that a third-party service provider did not notify the organization of a data breach that affected the service provider's data center. Which of the following should the CISO do FIRST?

A.Notify affected customers of the data breach.

B.Determine the extent of the impact to the organization.

C.Request an independent review of the provider's data center.

D.Recommend canceling the outsourcing contract.

CISM Exam Question 148

Which of the following should be the PRIMARY outcome of an information security program?

A.Risk elimination

B.Strategic alignment

C.Cost reduction

D.Threat reduction

CISM Exam Question 149

Which of the following is the MOST important factor of a successful information security program?

A.The program is based on a well-developed strategy.

B.The program is cost-efficient and within budget.

C.The program is focused on risk management.

D.The program follows industry best practices.

CISM Exam Question 150

Which of the following is the MOST effective way for an organization to ensure its third-party service providers are aware of information security requirements and expectations?

A.Including information security clauses within contracts

B.Requiring third parties to sign confidentiality agreements

C.Providing information security training to third-party personnel

D.Auditing the service delivery of third-party providers

Other Version: 606ISACA.CISM.v2024-07-14.q167; 745ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4425ISACA.CISM.v2022-09-16.q374; 8314ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11825ISACA.CISM.v2022-04-15.q999; 14878ISACA.CISM.v2021-10-30.q999

Latest Upload: 103Microsoft.SC-400.v2025-09-20.q290; 357ISACA.CGEIT.v2025-09-19.q537; 156Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 157Scrum.SAFe-Practitioner.v2025-09-18.q63; 147Workday.Workday-Prism-Analytics.v2025-09-17.q17; 133Oracle.1Z0-1055-24.v2025-09-17.q28; 130Oracle.1Z1-182.v2025-09-17.q32; 252Nutanix.NCP-US-6.5.v2025-09-16.q73; 267Oracle.1z0-071.v2025-09-16.q232; 205Oracle.1Z1-922.v2025-09-16.q125

CISM Exam Question 146

CISM Exam Question 147

CISM Exam Question 148

CISM Exam Question 149

CISM Exam Question 150

Download PDF File