CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 111
1. An organization wants to enable digital forensics for a business-critical application. Which of the following will BEST help to support this objective?
A) Install biometric access control.
B) Develop an incident response plan.
C) Define data retention criteria.
D) Enable activity logging.
2. An organization is developing a disaster recovery plan for a data center that hosts multiple applications. The application recovery sequence would BEST be determined through an analysis of:
A) Key performance indicators (KPIs)
B) Recovery time objectives (RTOs)
C) Recovery point objectives (RPOs)
D) The data classification scheme
3. Which of the following should be the PRIMARY goal of an information security manager when designing information security policies?
A) Reducing organizational security risk
B) Improving the protection of information
C) Minimizing the cost of security controls
D) Achieving organizational objectives
4. An information security manager is assisting in the development of the request for proposal (RFP) for a new outsourced service. This will require the third party to have access to critical business information. The security manager should focus PRIMARILY on defining:
A) security metrics
B) service level agreements (SLAs)
C) risk-reporting methodologies
D) security requirements for the process being outsourced
5. When developing security processes for handling credit card data on the business unit's information system, the information security manager should FIRST:
A) review corporate policies regarding credit card information.
B) implement the credit card companies' security requirements.
C) ensure that systems handle credit card data are segmented.
D) review industry's best practices for handling secure payments.
A) Install biometric access control.
B) Develop an incident response plan.
C) Define data retention criteria.
D) Enable activity logging.
2. An organization is developing a disaster recovery plan for a data center that hosts multiple applications. The application recovery sequence would BEST be determined through an analysis of:
A) Key performance indicators (KPIs)
B) Recovery time objectives (RTOs)
C) Recovery point objectives (RPOs)
D) The data classification scheme
3. Which of the following should be the PRIMARY goal of an information security manager when designing information security policies?
A) Reducing organizational security risk
B) Improving the protection of information
C) Minimizing the cost of security controls
D) Achieving organizational objectives
4. An information security manager is assisting in the development of the request for proposal (RFP) for a new outsourced service. This will require the third party to have access to critical business information. The security manager should focus PRIMARILY on defining:
A) security metrics
B) service level agreements (SLAs)
C) risk-reporting methodologies
D) security requirements for the process being outsourced
5. When developing security processes for handling credit card data on the business unit's information system, the information security manager should FIRST:
A) review corporate policies regarding credit card information.
B) implement the credit card companies' security requirements.
C) ensure that systems handle credit card data are segmented.
D) review industry's best practices for handling secure payments.
1. Right Answer: D
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: A
Explanation:
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: A
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment