Free Access to ISACA.CISM.v2023-01-28.q301 with Valid Practice Test (Page 55)

Question 266

An information security manager has observed multiple exceptions for a number of different security controls.
Which of the following should be the information security manager's FIRST course of action?

A.Report the noncompliance to the board of directors.
B.Inform respective risk owners of the impact of exceptions
C.Design mitigating controls for the exceptions.
D.Prioritize the risk and implement treatment options.

Question 267

Which of the following should be an information security manager's MOST important concern to ensure admissibility of information security evidence from cyber crimes?

A.Chain of custody
B.Tools used for evidence analysis
C.Forensics contractors
D.Efficiency of the forensics team

Question 268

Which of the following is the MOST appropriate method of ensuring password strength in a large organization?

A.Attempt to reset several passwords to weaker values
B.Install code to capture passwords for periodic audit
C.Sample a subset of users and request their passwords for review
D.Review general security settings on each platform

Question 269

Which of the following would be helpful to reduce the amount of time needed by an incident response team to determine appropriate actions?

A.Providing annual awareness training regarding incident response for team members
B.Rehearsing incident response procedures, roles, and responsibilities
C.Defining incident severity levels during a business impact analysis (BIA)
D.Validating the incident response plan against industry best practices

Question 270

An information security manager must understand the relationship between information security and business operations in order to:

A.support organizational objectives.
B.determine likely areas of noncompliance.
C.assess the possible impacts of compromise.
D.understand the threats to the business.

Question 266

Question 267

Question 268

Question 269

Question 270

Download PDF File