CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 158
1. The MAIN reason for continuous monitoring of a security strategy is to:
A) optimize resource allocation.
B) confirm benefits are being realized.
C) evaluate the implementation of the strategy.
D) allocate funds for information security
2. Which of the following is the MOST important factor in an organization's selection of a key risk indicator (KRI)?
A) Return on investment
B) Organizational culture
C) Compliance requirements
D) Criticality of information
3. During the initiation phase of the system development life cycle (SDLC) for a software project, information security activities should address:
A) baseline security controls.
B) cost-benefit analyses.
C) benchmarking security metrics.
D) security objectives.
4. BEST -In an organization that has undergone an expansion through an acquisition which of the following would secure the enterprise network?
A) Using security groups
B) Log analysis od system access
C) Business or role-based segmentation
D) Encryption of data traversing networks
5. Ensuring that activities performed by outsourcing providers comply with information security policies can BEST be accomplished through the use of:
A) service level agreements.
B) explicit contract language.
C) local regulations.
D) independent audits.
A) optimize resource allocation.
B) confirm benefits are being realized.
C) evaluate the implementation of the strategy.
D) allocate funds for information security
2. Which of the following is the MOST important factor in an organization's selection of a key risk indicator (KRI)?
A) Return on investment
B) Organizational culture
C) Compliance requirements
D) Criticality of information
3. During the initiation phase of the system development life cycle (SDLC) for a software project, information security activities should address:
A) baseline security controls.
B) cost-benefit analyses.
C) benchmarking security metrics.
D) security objectives.
4. BEST -In an organization that has undergone an expansion through an acquisition which of the following would secure the enterprise network?
A) Using security groups
B) Log analysis od system access
C) Business or role-based segmentation
D) Encryption of data traversing networks
5. Ensuring that activities performed by outsourcing providers comply with information security policies can BEST be accomplished through the use of:
A) service level agreements.
B) explicit contract language.
C) local regulations.
D) independent audits.
1. Right Answer: C
Explanation:
2. Right Answer: D
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: A
Explanation:
Explanation:
2. Right Answer: D
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: A
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment