CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 168
1. Ensuring that activities performed by outsourcing providers comply with information security policies can BEST be accomplished through the use of:
A) service level agreements.
B) independent audits.
C) explicit contract language.
D) local regulations.
2. Which of the following will BEST enable an effective information asset classification process?
A) Reviewing the recovery time objective (RTO) requirements of the asset
B) Analyzing audit findings
C) Including security requirements in the classification process
D) Assigning ownership
3. Which of the following devices, when placed in a demilitarized zone (DMZ), would be considered the MOST significant exposure?
A) Proxy server
B) Mail relay server
C) Application server
D) Database server
4. Which of the following should be the MOST important criteria when defining data retention policies?
A) Capacity requirements
B) Audit findings
C) Regulatory requirements
D) Industry best practices
5. Within the confidentiality, integrity, and availability (CIA) triad, which of the following activities BEST supports the concept of integrity?
A) Enforcing service level agreements
B) Implementing a data classification schema
C) Ensuring encryption for data in transit
D) Utilizing a formal change management process
A) service level agreements.
B) independent audits.
C) explicit contract language.
D) local regulations.
2. Which of the following will BEST enable an effective information asset classification process?
A) Reviewing the recovery time objective (RTO) requirements of the asset
B) Analyzing audit findings
C) Including security requirements in the classification process
D) Assigning ownership
3. Which of the following devices, when placed in a demilitarized zone (DMZ), would be considered the MOST significant exposure?
A) Proxy server
B) Mail relay server
C) Application server
D) Database server
4. Which of the following should be the MOST important criteria when defining data retention policies?
A) Capacity requirements
B) Audit findings
C) Regulatory requirements
D) Industry best practices
5. Within the confidentiality, integrity, and availability (CIA) triad, which of the following activities BEST supports the concept of integrity?
A) Enforcing service level agreements
B) Implementing a data classification schema
C) Ensuring encryption for data in transit
D) Utilizing a formal change management process
1. Right Answer: B
Explanation:
2. Right Answer: C
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: D
Explanation:
Explanation:
2. Right Answer: C
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: D
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment