CISM questions • Exam prepare

Exam contains 1248 questions

Page 14 of 208

Question 79 🔥

Which of the following BEST validates that security controls are implemented in a new business process?

Which database solution meets these requirements?

A. Verify the use of a recognized control framework

B. Review the process for conformance with information security best practices

C. Benchmark the process against industry practices

D. Assess the process according to information security policy

Highly voted

Discussion of the question

Question 80 🔥

Which of the following is the MOST effective way for an organization to ensure its third-party service providers are aware of information security requirements and expectations?

Which database solution meets these requirements?

A. Including information security clauses within contracts

Highly voted

B. Auditing the service delivery of third-party providers

C. Providing information security training to third-party personnel

D. Requiring third parties to sign confidentiality agreements

Discussion of the question

Question 81 🔥

The MOST important reason to use a centralized mechanism to identify information security incidents is to:

Which database solution meets these requirements?

A. comply with corporate policies

B. detect threats across environments

Highly voted

C. prevent unauthorized changes to networks

D. detect potential fraud

Discussion of the question

Question 82 🔥

Which of the following should be done FIRST when establishing security measures for personal data stored and processed on a human resources management system?

Which database solution meets these requirements?

A. Conduct a vulnerability assessment.

B. Move the system into a separate network.

C. Conduct a privacy impact assessment (PIA).

Highly voted

D. Evaluate data encryption technologies.

Discussion of the question

Question 83 🔥

An information security manager has been informed of a new vulnerability in an online banking application, and a patch to resolve this issue is expected to be released in the next 72 hours. Which of the following should the information security manager do FIRST?

Which database solution meets these requirements?

A. Implement mitigating controls.

B. Perform a business impact analysis (BIA).

C. Perform a risk assessment.

Highly voted

D. Notify senior management.

Discussion of the question

Question 84 🔥

An information security risk analysis BEST assists an organization in ensuring that:

Which database solution meets these requirements?

A. the infrastructure has the appropriate level of access control.

B. cost-effective decisions are made with regard to which assets need protection

Highly voted

C. an appropriate level of funding is applied to security processes.

D. the organization implements appropriate security technologies

Discussion of the question

Ready to Pass Your Certification Test

isaca CISM

Exam contains 1248 questions

Lorem ipsum dolor sit amet consectetur. Eget sed turpis aenean sit aenean. Integer at nam ullamcorper a.

Company

Product

Resources

Follow us