CISM Exam Question 421
An organization's information security manager is performing a post-incident review of a security incident in which the following events occurred:
- A bad actor broke into a business-critical FTP server by brute forcing an administrative password
- The third-party service provider hosting the server sent an automated alert message to the help desk, but was ignored
- The bad actor could not access the administrator console, but was exposed to encrypted data transferred to the server
- After three (3) hours, the bad actor deleted the FTP directory, causing incoming FTP attempts by legitimate customers to fail Which of the following could have been prevented by conducting regular incident response testing?
- A bad actor broke into a business-critical FTP server by brute forcing an administrative password
- The third-party service provider hosting the server sent an automated alert message to the help desk, but was ignored
- The bad actor could not access the administrator console, but was exposed to encrypted data transferred to the server
- After three (3) hours, the bad actor deleted the FTP directory, causing incoming FTP attempts by legitimate customers to fail Which of the following could have been prevented by conducting regular incident response testing?
CISM Exam Question 422
The information security manager has been notified of a new vulnerability that affects key data processing systems within the organization. Which of the following should be done FIRST?
CISM Exam Question 423
Which of the following BEST enables the deployment of consistent security throughout international branches within a multinational organization?
CISM Exam Question 424
Which of the following is MOST important for an information security manager to consider when identifying information security resource requirements?
CISM Exam Question 425
Which of the following would BEST provide stakeholders with information to determine the appropriate response to a disaster?