Online Access Free ISACA.CISM.v2024-10-14.q528 Practice Test (Page 87)

CISM Exam Question 426

A small organization with limited budget hires a new information security manager who finds the same IT staff member is assigned the responsibility of system administrator, security administrator, database administrator, and application administrator. What is the manager's BEST course of action?

A.Implement monitoring of IT administrator activities.

B.Automate user provisioning activities.

C.Maintain strict control over user provisioning activities.

D.Formally document IT administrator activities.

CISM Exam Question 427

Which of the following events would MOST likely require a revision to the information security program?

A.An increase in industry threat level

B.A significant increase in reported incidents

C.A change in IT management

D.A merger with another organization

CISM Exam Question 428

Which of the following is MOST appropriate to add to a dashboard for the purpose of illustrating an organization's risk level to senior management?

A.Budget variance for information security

B.Risk heat map

C.Number of reported incidents

D.Results of risk and control testing

CISM Exam Question 429

A business unit is not complying with a control implemented to mitigate risk because doing so impacts the ability to achieve business goals. When reporting the noncompliance to senior management, what would be the information security manager's BEST recommendation?

A.Conduct a control assessment.

B.Educate the noncompliant users.

C.Accept the noncompliance.

D.Implement compensating controls.

CISM Exam Question 430

An information security manager has been made aware of a new data protection regulation that will soon go into effect. Which of the following is the BEST way to manage the risk of noncompliance?

A.Consult with senior management on the best course of action.

B.Implement a program of work to comply with the new legislation.

C.Understand the cost of noncompliance.

D.Perform a gap analysis.

Other Version: 606ISACA.CISM.v2024-07-14.q167; 729ISACA.CISM.v2024-04-24.q336; 1266ISACA.CISM.v2023-09-14.q160; 1233ISACA.CISM.v2023-09-09.q151; 1232ISACA.CISM.v2023-08-22.q180; 1009ISACA.CISM.v2023-07-28.q152; 1045ISACA.CISM.v2023-05-16.q111; 1081ISACA.CISM.v2023-05-10.q114; 1025ISACA.CISM.v2023-03-07.q88; 4405ISACA.CISM.v2022-09-16.q374; 8287ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 11798ISACA.CISM.v2022-04-15.q999; 14852ISACA.CISM.v2021-10-30.q999

Latest Upload: 306ISACA.CGEIT.v2025-09-19.q537; 155Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 156Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 246Nutanix.NCP-US-6.5.v2025-09-16.q73; 266Oracle.1z0-071.v2025-09-16.q232; 203Oracle.1Z1-922.v2025-09-16.q125; 326CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISM Exam Question 426

CISM Exam Question 427

CISM Exam Question 428

CISM Exam Question 429

CISM Exam Question 430

Download PDF File