CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 169
1. A small organization has a contract with a multinational cloud computing vendor. Which of the following would present the GREATEST concern to an information security manager if omitted from the contract?
A) Authority of the subscriber to approve access to its data
B) Right of the subscriber to conduct onsite audits of the vendor
C) Escrow of software code with conditions for code release
D) Comingling of subscribers' data on the same physical server
2. Which of the following is the BEST method to protect consumer private information for an online public website?
A) Encrypt consumer's data in transit and at rest.
B) Apply a masking policy to the consumer data.
C) Use secure encrypted transport layer.
D) Apply strong authentication to online accounts.
3. Failure to include information security requirements within the build/buy decision would MOST likely result in the need for:
A) compensating controls in the operational environment.
B) commercial product compliance with corporate standards.
C) more stringent source programming standards.
D) security scanning of operational platforms.
4. A business impact analysis should be periodically executed PRIMARILY to:
A) validate vulnerabilities on environmental changes.
B) analyze the importance of assets.
C) verify the effectiveness of controls.
D) check compliance with regulations.
5. The GREATEST benefit resulting from well-documented information security procedures is that they:
A) ensure that security policies are consistently applied.
B) ensure that critical processes can be followed by temporary staff.
C) facilitate security training of new staff.
D) provide a basis for auditing security practices.
A) Authority of the subscriber to approve access to its data
B) Right of the subscriber to conduct onsite audits of the vendor
C) Escrow of software code with conditions for code release
D) Comingling of subscribers' data on the same physical server
2. Which of the following is the BEST method to protect consumer private information for an online public website?
A) Encrypt consumer's data in transit and at rest.
B) Apply a masking policy to the consumer data.
C) Use secure encrypted transport layer.
D) Apply strong authentication to online accounts.
3. Failure to include information security requirements within the build/buy decision would MOST likely result in the need for:
A) compensating controls in the operational environment.
B) commercial product compliance with corporate standards.
C) more stringent source programming standards.
D) security scanning of operational platforms.
4. A business impact analysis should be periodically executed PRIMARILY to:
A) validate vulnerabilities on environmental changes.
B) analyze the importance of assets.
C) verify the effectiveness of controls.
D) check compliance with regulations.
5. The GREATEST benefit resulting from well-documented information security procedures is that they:
A) ensure that security policies are consistently applied.
B) ensure that critical processes can be followed by temporary staff.
C) facilitate security training of new staff.
D) provide a basis for auditing security practices.
1. Right Answer: D
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: A
Explanation:
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: A
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment