CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISA—Certified Information Systems Auditor - Part 94
1. Which of the following is the MAIN purpose of an information security management system?
A) To enhance the impact of reports used to monitor information security incidents
B) To reduce the frequency and impact of information security incidents
C) To identify and eliminate the root causes of information security incidents
D) To keep information security policies and procedures up-to-date
2. Which of the following would be an INAPPROPRIATE activity for a network administrator?
A) Analyzing network security incidents
B) Prioritizing traffic between subnets
C) Modifying a router configuration
D) Modifying router log files
3. There is a concern that a salesperson may download an organization's full customer list from the Software as a Service (SaaS) when leaving to work for a competitor. Which of the following would BEST help to identify this type of incident?
A) Monitor applications logs
B) Disable remote access to the application
C) Implement a web application firewall
D) Implement an intrusion detection system (IDS)
4. Which of the following is the MOST important incident management consideration for an organization subscribing to a cloud service?
A) Decision on the classification of cloud-hosted data
B) Expertise of personnel providing incident response
C) Implementation of a SIEM in the organization
D) An agreement on the definition of a security incident
5. Which of the following would be MOST useful to an information security manager when conducting a post-incident review of an attack?
A) Details from intrusion detection system logs
B) Method of operation used by the attacker
C) Cost of the attack to the organization
D) Location of the attacker
A) To enhance the impact of reports used to monitor information security incidents
B) To reduce the frequency and impact of information security incidents
C) To identify and eliminate the root causes of information security incidents
D) To keep information security policies and procedures up-to-date
2. Which of the following would be an INAPPROPRIATE activity for a network administrator?
A) Analyzing network security incidents
B) Prioritizing traffic between subnets
C) Modifying a router configuration
D) Modifying router log files
3. There is a concern that a salesperson may download an organization's full customer list from the Software as a Service (SaaS) when leaving to work for a competitor. Which of the following would BEST help to identify this type of incident?
A) Monitor applications logs
B) Disable remote access to the application
C) Implement a web application firewall
D) Implement an intrusion detection system (IDS)
4. Which of the following is the MOST important incident management consideration for an organization subscribing to a cloud service?
A) Decision on the classification of cloud-hosted data
B) Expertise of personnel providing incident response
C) Implementation of a SIEM in the organization
D) An agreement on the definition of a security incident
5. Which of the following would be MOST useful to an information security manager when conducting a post-incident review of an attack?
A) Details from intrusion detection system logs
B) Method of operation used by the attacker
C) Cost of the attack to the organization
D) Location of the attacker
1. Right Answer: B
Explanation:
2. Right Answer: D
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: D
Explanation:
5. Right Answer: B
Explanation:
Explanation:
2. Right Answer: D
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: D
Explanation:
5. Right Answer: B
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment