CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISA—Certified Information Systems Auditor - Part 38
1. An information security manager is assisting in the development of the request for proposal (RFP) for a new outsourced service. This will require the third party to have access to critical business information. The security manager should focus PRIMARILY on defining:
A) security requirements for the process being outsourced
B) security metrics
C) service level agreements (SLAs)
D) risk-reporting methodologies
2. The MOST useful technique for maintaining management support for the information security program is:
A) identifying the risks and consequences of failure to comply with standards
B) benchmarking the security programs of comparable organizations
C) implementing a comprehensive security awareness and training program
D) informing management about the security of business operations
3. An organization developed a comprehensive three-year IT strategic plan. Halfway into the plan, a major legislative change impacting the organization is enacted.Which of the following should be management's NEXTcourse of action?
A) Develop specific procedural documentation related to the changed legislation.
B) Assess the legislation to determine whether are required to the strategic IT plan.
C) Perform a risk management of the legislative changes.
D) Develop a new IT strategic plan that encompasses the new legislation.
4. Which of the following is the MOST important factor when an organization is developing information security policies and procedures?
A) Cross-references between policies and procedures
B) Inclusion of mission and objectives
C) Compliance with relevant regulations
D) Consultation with management
5. Which of the following is the MOST important advantage of participating in beta testing of software products?
A) It improves vendor support and training.
B) It enables an organization to gain familiarity with new products and their functionality.
C) It increases an organization's ability to retain staff who prefer to work with new technology.
D) It enhances security and confidentiality.
A) security requirements for the process being outsourced
B) security metrics
C) service level agreements (SLAs)
D) risk-reporting methodologies
2. The MOST useful technique for maintaining management support for the information security program is:
A) identifying the risks and consequences of failure to comply with standards
B) benchmarking the security programs of comparable organizations
C) implementing a comprehensive security awareness and training program
D) informing management about the security of business operations
3. An organization developed a comprehensive three-year IT strategic plan. Halfway into the plan, a major legislative change impacting the organization is enacted.Which of the following should be management's NEXTcourse of action?
A) Develop specific procedural documentation related to the changed legislation.
B) Assess the legislation to determine whether are required to the strategic IT plan.
C) Perform a risk management of the legislative changes.
D) Develop a new IT strategic plan that encompasses the new legislation.
4. Which of the following is the MOST important factor when an organization is developing information security policies and procedures?
A) Cross-references between policies and procedures
B) Inclusion of mission and objectives
C) Compliance with relevant regulations
D) Consultation with management
5. Which of the following is the MOST important advantage of participating in beta testing of software products?
A) It improves vendor support and training.
B) It enables an organization to gain familiarity with new products and their functionality.
C) It increases an organization's ability to retain staff who prefer to work with new technology.
D) It enhances security and confidentiality.
1. Right Answer: C
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: B
Explanation:
4. Right Answer: B
Explanation:
5. Right Answer: B
Explanation:
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: B
Explanation:
4. Right Answer: B
Explanation:
5. Right Answer: B
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment