CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISA—Certified Information Systems Auditor - Part 43
1. Which of the following is the MOST effective way for an organization to ensure its third-party service providers are aware of information security requirements and expectations?
A) Providing information security training to third-party personnel
B) Auditing the service delivery of third-party providers
C) Inducting information security clauses within contracts
D) Requiring third parties to sign confidentiality agreements
2. Which of the following should be the MOST important consideration when implementing an information security framework?
A) Compliance requirements
B) Audit findings
C) Technical capabilities
D) Risk appetite
3. An organization's IT department is undertaking a large virtualization project to reduce its physical server footprint. Which of the following should be the HIGHEST priority of the information security manager?
A) Determining how incidents will be managed
B) Selecting the virtualization software
C) Being involved as the design stage of the project
D) Ensuring the project has appropriate security funding
4. An information security manager is developing evidence preservation procedures for an incident response plan. Which of the following would be the BEST source of guidance for requirements associated with the procedures?
A) IT management
B) Executive management
C) Legal counsel
D) Data owners
5. What is the MOST important role of an organization's data custodian in support of information security function?
A) Evaluating data security technology vendors
B) Applying approval security policies
C) Approving access rights to departmental data
D) Assessing data security risks to the organization
A) Providing information security training to third-party personnel
B) Auditing the service delivery of third-party providers
C) Inducting information security clauses within contracts
D) Requiring third parties to sign confidentiality agreements
2. Which of the following should be the MOST important consideration when implementing an information security framework?
A) Compliance requirements
B) Audit findings
C) Technical capabilities
D) Risk appetite
3. An organization's IT department is undertaking a large virtualization project to reduce its physical server footprint. Which of the following should be the HIGHEST priority of the information security manager?
A) Determining how incidents will be managed
B) Selecting the virtualization software
C) Being involved as the design stage of the project
D) Ensuring the project has appropriate security funding
4. An information security manager is developing evidence preservation procedures for an incident response plan. Which of the following would be the BEST source of guidance for requirements associated with the procedures?
A) IT management
B) Executive management
C) Legal counsel
D) Data owners
5. What is the MOST important role of an organization's data custodian in support of information security function?
A) Evaluating data security technology vendors
B) Applying approval security policies
C) Approving access rights to departmental data
D) Assessing data security risks to the organization
1. Right Answer: C
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: C
Explanation:
4. Right Answer: D
Explanation:
5. Right Answer: C
Explanation:
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: C
Explanation:
4. Right Answer: D
Explanation:
5. Right Answer: C
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment