CISM questions • Exam prepare

Exam contains 1248 questions

Page 12 of 208

Question 67 🔥

When establishing metrics for an information security program, the BEST approach is to identify indicators that:

Which database solution meets these requirements?

A. support major information security initiatives.

B. reflect the corporate risk culture.

C. reduce information security program spending.

D. demonstrate the effectiveness of the security program.

Highly voted

Discussion of the question

Question 68 🔥

For an organization that provides web-based services, which of the following security events would MOST likely initiate an incident response plan and be escalated to management?

Which database solution meets these requirements?

A. Anti-malware alerts on several employees' workstations

B. Several port scans of the web server

C. Multiple failed login attempts on an employee's workstation

D. Suspicious network traffic originating from the demilitarized zone (DMZ)

Highly voted

Discussion of the question

Question 69 🔥

An information security manager is implementing a bring your own device (BYOD) program. Which of the following would BEST ensure that users adhere to the security standards?

Which database solution meets these requirements?

A. Publish the standards on the intranet landing page.

B. Deploy a device management solution.

Highly voted

C. Establish an acceptable use policy.

D. Monitor user activities on the network.

Discussion of the question

Question 70 🔥

When monitoring the security of a web-based application, which of the following is MOST frequently reviewed?

Which database solution meets these requirements?

A. Audit reports

B. Access logs

Highly voted

C. Access lists

D. Threat metrics

Discussion of the question

Question 71 🔥

Which of the following is the MOST effective way for an information security manager to ensure that security is incorporated into an organization's project development processes?

Which database solution meets these requirements?

A. Develop good communications with the project management office (PMO).

B. Participate in project initiation, approval, and funding.

C. Conduct security reviews during design, testing, and implementation.

D. Integrate organization's security requirements into project management.

Highly voted

Discussion of the question

Question 72 🔥

An information security risk analysis BEST assists an organization in ensuring that:

Which database solution meets these requirements?

A. the infrastructure has the appropriate level of access control.

B. cost-effective decisions are made with regard to which assets need protection

Highly voted

C. an appropriate level of funding is applied to security processes.

D. the organization implements appropriate security technologies

Discussion of the question

Ready to Pass Your Certification Test

isaca CISM

Exam contains 1248 questions

Lorem ipsum dolor sit amet consectetur. Eget sed turpis aenean sit aenean. Integer at nam ullamcorper a.

Company

Product

Resources

Follow us