CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 36
1. An information security manager discovers that the organization's new information security policy is not being followed across all departments. Which of the following should be of GREATEST concern to the information security manager?
A) Different communication methods may be required for each business unit.
B) Business unit management has not emphasized the importance of the new policy.
C) The corresponding controls are viewed as prohibitive to business operations.
D) The wording of the policy is not tailored to the audience.
2. An organization has detected potential risk emerging from noncompliance with new regulations in its industry.Which of the following is the MOST important reason to report this situation to senior management?
A) The risk profile needs to be updated.
B) An external review of the risk needs to be conducted.
C) Specific monitoring controls need to be implemented.
D) A benchmark analysis needs to be performed.
3. Which of the following is the BEST way for information security manager to identify compliance with information security policies within an organization?
A) Analyze system logs.
B) Conduct security awareness testing.
C) Perform vulnerability assessments.
D) Conduct periodic audits.
4. The BEST way to encourage good security practices is to:
A) schedule periodic compliance audits.
B) discipline those who fail to comply with the security policy.
C) recognize appropriate security behavior by individuals.
D) publish the information security policy.
5. Which of the following enables compliance with a nonrepudiation policy for electronic transactions?
A) Digital certificates
B) Digital signatures
C) Encrypted passwords
D) One-time passwords
A) Different communication methods may be required for each business unit.
B) Business unit management has not emphasized the importance of the new policy.
C) The corresponding controls are viewed as prohibitive to business operations.
D) The wording of the policy is not tailored to the audience.
2. An organization has detected potential risk emerging from noncompliance with new regulations in its industry.Which of the following is the MOST important reason to report this situation to senior management?
A) The risk profile needs to be updated.
B) An external review of the risk needs to be conducted.
C) Specific monitoring controls need to be implemented.
D) A benchmark analysis needs to be performed.
3. Which of the following is the BEST way for information security manager to identify compliance with information security policies within an organization?
A) Analyze system logs.
B) Conduct security awareness testing.
C) Perform vulnerability assessments.
D) Conduct periodic audits.
4. The BEST way to encourage good security practices is to:
A) schedule periodic compliance audits.
B) discipline those who fail to comply with the security policy.
C) recognize appropriate security behavior by individuals.
D) publish the information security policy.
5. Which of the following enables compliance with a nonrepudiation policy for electronic transactions?
A) Digital certificates
B) Digital signatures
C) Encrypted passwords
D) One-time passwords
1. Right Answer: C
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: B
Explanation:
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: B
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment