Free Access to ISACA.CISM.v2025-07-07.q684 with Valid Practice Test (Page 72)

Question 351

Which of the following measures BEST indicates an improvement in the information security program to stakeholders?

A.An increase in awareness training quiz pass rates
B.A downward trend in reported security incidents
C.A reduction in reported viruses
D.A decrease in click rates during phishing simulations

Question 352

An online bank identifies a successful network attack in progress. The bank should FIRST:

A.isolate the affected network segment.
B.shut down the entire network.
C.report the root cause to the board of directors.
D.assess whether personally identifiable information (PII) is compromised.

Question 353

When conducting a post-incident review, the GREATEST benefit of collecting mean time to resolution (MTTR) data is the ability to:

A.verify compliance with the service level agreement (SLA).
B.learn of potential areas cf improvement
C.provide metrics for reporting to senior management
D.reduce the costs of future preventive controls.

Question 354

To justify the establishment of an incident management team, an information security manager would find which of the following to be the MOST effective?

A.Assessment of business impact of past incidents
B.Need of an independent review of incident causes
C.Need for constant improvement on the security level
D.Possible business benefits from incident impact reduction

Question 355

An organization has a process in place that involves the use of a vendor. A risk assessment was completed during the development of the process. A year after the implementation a monetary decision has been made to use a different vendor. What, if anything, should occur?

A.Nothing, since a risk assessment was completed during development.
B.A vulnerability assessment should be conducted.
C.A new risk assessment should be performed.
D.The new vendor's SAS 70 type II report should be reviewed.

Question 351

Question 352

Question 353

Question 354

Question 355

Download PDF File