CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 157
1. The PRIMARY reason for using information security metrics is to:
A) achieve senior management commitment.
B) ensure alignment with corporate requirements.
C) adhere to legal and regulatory requirements.
D) monitor the effectiveness of controls.
2. An information security team is investigating an alleged breach of an organization's network. Which of the following would be the BEST single source of evidence to review?
A) Intrusion detection system
B) SIEM tool
C) Antivirus software
D) File integrity monitoring software
3. Which of the following is the -defense against distributed denial of service (DDoS) attacks?
A) Multiple and redundant paths
B) Well-configured routers and firewalls
C) Regular patching
D) Intruder-detection lockout
4. Which of the following function is the MOST critical when initiating the removal of system access for terminated employees?
A) Human resources
B) Legal
C) Help desk
D) Information security
5. After logging in to a web application, further password credentials are required at various application points. Which of the following is the PRIMARY reason for such an approach?
A) To ensure access is granted to the authorized person
B) To enforce strong two-factor authentication
C) To ensure session management variables are secure
D) To implement single sign-on
A) achieve senior management commitment.
B) ensure alignment with corporate requirements.
C) adhere to legal and regulatory requirements.
D) monitor the effectiveness of controls.
2. An information security team is investigating an alleged breach of an organization's network. Which of the following would be the BEST single source of evidence to review?
A) Intrusion detection system
B) SIEM tool
C) Antivirus software
D) File integrity monitoring software
3. Which of the following is the -defense against distributed denial of service (DDoS) attacks?
A) Multiple and redundant paths
B) Well-configured routers and firewalls
C) Regular patching
D) Intruder-detection lockout
4. Which of the following function is the MOST critical when initiating the removal of system access for terminated employees?
A) Human resources
B) Legal
C) Help desk
D) Information security
5. After logging in to a web application, further password credentials are required at various application points. Which of the following is the PRIMARY reason for such an approach?
A) To ensure access is granted to the authorized person
B) To enforce strong two-factor authentication
C) To ensure session management variables are secure
D) To implement single sign-on
1. Right Answer: D
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: B
Explanation:
4. Right Answer: D
Explanation:
5. Right Answer: A
Explanation:
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: B
Explanation:
4. Right Answer: D
Explanation:
5. Right Answer: A
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment