CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISA—Certified Information Systems Auditor - Part 41
1. An organization's senior management is encouraging employees to use social media for promotional purposes. Which of the following should be the informationsecurity manager's FIRSTstep to support this strategy?
A) Develop a business case for a data loss prevention solution
B) Develop a guideline on the acceptable use of social media
C) Incorporate social media into the security awareness program
D) Employ the use of a web content filtering solution
2. Which of the following is the BEST course of action for an information security manager to align security and business goals?
A) Reviewing the business strategy
B) Actively engaging with stakeholders
C) Conducting a business impact analysis
D) Defining key performance indicators
3. An organization faces severe fines and penalties if not in compliance with local regulatory requirements by an established deadline. Senior management has asked the information security manager to prepare an action plan to achieve compliance. Which of the following would provide the MOST useful information for planning purposes?
A) Results from a business impact analysis
B) Results from a gap analysis
C) An inventory of security controls currently in place
D) Deadline and penalties for noncompliance
4. The MOST -important objective of security awareness training for business staff is to:
A) understand intrusion methods
B) reduce negative audit findings
C) increase compliance
D) modify behavior
5. If the inherent risk of a business activity is higher than the acceptable risk level, the information security manager should FIRST:
A) transfer risk to a third party to avoid cost of impact
B) implement controls to mitigate the risk to an acceptable level
C) recommend that management avoids the business activity
D) assess the gap between current and acceptable level of risk
A) Develop a business case for a data loss prevention solution
B) Develop a guideline on the acceptable use of social media
C) Incorporate social media into the security awareness program
D) Employ the use of a web content filtering solution
2. Which of the following is the BEST course of action for an information security manager to align security and business goals?
A) Reviewing the business strategy
B) Actively engaging with stakeholders
C) Conducting a business impact analysis
D) Defining key performance indicators
3. An organization faces severe fines and penalties if not in compliance with local regulatory requirements by an established deadline. Senior management has asked the information security manager to prepare an action plan to achieve compliance. Which of the following would provide the MOST useful information for planning purposes?
A) Results from a business impact analysis
B) Results from a gap analysis
C) An inventory of security controls currently in place
D) Deadline and penalties for noncompliance
4. The MOST -important objective of security awareness training for business staff is to:
A) understand intrusion methods
B) reduce negative audit findings
C) increase compliance
D) modify behavior
5. If the inherent risk of a business activity is higher than the acceptable risk level, the information security manager should FIRST:
A) transfer risk to a third party to avoid cost of impact
B) implement controls to mitigate the risk to an acceptable level
C) recommend that management avoids the business activity
D) assess the gap between current and acceptable level of risk
1. Right Answer: B
Explanation:
2. Right Answer: D
Explanation:
3. Right Answer: B
Explanation:
4. Right Answer: D
Explanation:
5. Right Answer: D
Explanation:
Explanation:
2. Right Answer: D
Explanation:
3. Right Answer: B
Explanation:
4. Right Answer: D
Explanation:
5. Right Answer: D
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment