CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISA—Certified Information Systems Auditor - Part 40
1. Which of the following is the BEST approach to make strategic information security decisions?
A) Establish regular information security status reporting
B) Establish business unit security working groups
C) Establish periodic senior management meetings
D) Establish an information security steering committee
2. An organization which uses external cloud services extensively is concerned with risk monitoring and timely response. The BEST way to address this concern is to ensure:
A) the availability of continuous technical support
B) internal security standards are in place
C) a right-to-audit clause is included in contracts
D) appropriate service level agreements (SLAs) are in place
3. The MAIN purpose of documenting information security guidelines for use within a large, international organization is to:
A) ensure that all business units have the same strategic security goals
B) provide evidence for auditors that security practices are adequate
C) explain the organization's preferred practices for security
D) ensure that all business units implement identical security procedures
4. Which of the following would be the MOST important information to include in a business case for an information security project in a highly regulated industry?
A) Industry comparison analysis
B) Critical audit findings
C) Compliance risk assessment
D) Number of reported security incidents
5. When an information security manager presents an information security program status report to senior management, the MAIN focus should be:
A) key performance indicators (KPIs)
B) critical risks indicators
C) net present value (NPV)
D) key controls evaluation
A) Establish regular information security status reporting
B) Establish business unit security working groups
C) Establish periodic senior management meetings
D) Establish an information security steering committee
2. An organization which uses external cloud services extensively is concerned with risk monitoring and timely response. The BEST way to address this concern is to ensure:
A) the availability of continuous technical support
B) internal security standards are in place
C) a right-to-audit clause is included in contracts
D) appropriate service level agreements (SLAs) are in place
3. The MAIN purpose of documenting information security guidelines for use within a large, international organization is to:
A) ensure that all business units have the same strategic security goals
B) provide evidence for auditors that security practices are adequate
C) explain the organization's preferred practices for security
D) ensure that all business units implement identical security procedures
4. Which of the following would be the MOST important information to include in a business case for an information security project in a highly regulated industry?
A) Industry comparison analysis
B) Critical audit findings
C) Compliance risk assessment
D) Number of reported security incidents
5. When an information security manager presents an information security program status report to senior management, the MAIN focus should be:
A) key performance indicators (KPIs)
B) critical risks indicators
C) net present value (NPV)
D) key controls evaluation
1. Right Answer: D
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: A
Explanation:
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: A
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment