Free Access to ISACA.CISM.v2023-01-28.q301 with Valid Practice Test (Page 17)

Question 76

An organization with multiple data centers has designated one of its own facilities as the recovery site. The MOST important concern is the:

A.communication line capacity between data centers.
B.current processing capacity loads at data centers.
C.differences in logical security at each center.
D.synchronization of system software release versions.

Question 77

An organization that has outsourced its incident management capabilities just discovered a of the following is the MOST important action of the information security manager?

A.Refer to the organization's response plan.
B.Notify the outsourcer of the privacy breach.
C.Alert the appropriate law enforcement authorities.
D.Follow the outsourcer's response plan.

Question 78

Which of the following is MOST helpful to maintain cohesiveness within an organization's information security resource?

A.Information security architecture
B.Security gap analysis
C.Business impact analysis
D.Information security steering committee

Question 79

Which of the following is the MOST effective way for senior management to support the integration of information security governance into corporate governance?

A.Develop the information security strategy based on the enterprise strategy.
B.Appoint a business manager as heard of information security.
C.Promote organization-wide information security awareness campaigns.
D.Establish a steering committee with representation from across the organization.

Question 80

What should an information security manager do FIRST upon learning that the third-party provider responsible for a mission-critical process is subcontracting critical functions to other providers?

A.Adjust the insurance policy coverage.
B.Request a formal explanation from the third party.
C.Engage an external audit of the third party.
D.Review the provider's contract

Question 76

Question 77

Question 78

Question 79

Question 80

Download PDF File