Online Access Free ISACA.CISM.v2025-12-21.q445 Practice Test (Page 24)

CISM Exam Question 111

A project team member notifies the information security manager of a potential security risk that has not been included in the risk register. Which of the following should the information security manager do FIRST?

A.Prepare a risk mitigation plan.

B.Analyze the identified risk.

C.Add the risk to the risk register.

D.Implement compensating controls.

CISM Exam Question 112

Which of the following is the BEST indicator of a successful intrusion into an organization's systems?

A.Increase in the number of irregular application requests

B.Decrease in internal network traffic

C.Decrease in available storage space

D.Increase in the number of failed login attempts

CISM Exam Question 113

Which of the following should an information security manager do FIRST to address the risk associated with a new third-party cloud application that will not meet organizational security requirements?

A.Include security requirements in the contract.

B.Update the risk register.

C.Consult with the business owner.

D.Restrict application network access temporarily.

CISM Exam Question 114

Which of the following would BEST help to ensure compliance with an organization's information security requirements by an IT service provider?

A.Requiring an external security audit of the IT service provider

B.Requiring regular reporting from the IT service provider

C.Defining information security requirements with internal IT

D.Defining the business recovery plan with the IT service provider

CISM Exam Question 115

Which of the following is MOST important to ensure the alignment of an information security program with the organizational strategy?

A.Benchmarking against industry peers

B.Identification of business-specific risk factors

C.Adoption of an industry recognized framework

D.Approval from senior management

Other Version: 2137ISACA.CISM.v2024-10-14.q528; 665ISACA.CISM.v2024-07-14.q167; 829ISACA.CISM.v2024-04-24.q336; 1322ISACA.CISM.v2023-09-14.q160; 1295ISACA.CISM.v2023-09-09.q151; 1281ISACA.CISM.v2023-08-22.q180; 1119ISACA.CISM.v2023-07-28.q152; 1099ISACA.CISM.v2023-05-16.q111; 1131ISACA.CISM.v2023-05-10.q114; 1059ISACA.CISM.v2023-03-07.q88; 4574ISACA.CISM.v2022-09-16.q374; 8462ISACA.CISM.v2022-08-01.q522; 56ISACA.Ipassleader.CISM.v2022-06-09.by.josephine.1215q.pdf; 12118ISACA.CISM.v2022-04-15.q999; 15257ISACA.CISM.v2021-10-30.q999

Latest Upload: 121Databricks.Databricks-Certified-Data-Analyst-Associate.v2025-12-22.q27; 125SAP.C_ARSOR_2404.v2025-12-22.q38; 119LinuxFoundation.CKS.v2025-12-22.q76; 122ISACA.CISA-CN.v2025-12-21.q601; 124Nutanix.NCP-CN.v2025-12-21.q49; 117Fortinet.FCSS_LED_AR-7.6.v2025-12-21.q42; 127Cloudera.CDP-3002.v2025-12-21.q157; 213Microsoft.AZ-400.v2025-12-21.q278; 263ISACA.CISM.v2025-12-21.q445; 125CompTIA.DA0-002.v2025-12-21.q55

CISM Exam Question 111

CISM Exam Question 112

CISM Exam Question 113

CISM Exam Question 114

CISM Exam Question 115

Download PDF File