CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 202
1. When training an incident response team, the advantage of using tabletop exercises is that they:
A) provide the team with practical experience in responding to incidents
B) ensure that the team can respond to any incident
C) remove the need to involve senior managers in the response process
D) enable the team to develop effective response interactions
2. An information security manager that is utilizing a public cloud is performing a root cause investigation of an incident that took place in that environment. Which ofMAIN -the following should be the security manager'sconcern?
A) Limited access to information
B) Shared infrastructure with other subscribers
C) Transaction records split into multiple cloud locations
D) Lack of security log filtering
3. The PRIMARY objective of performing a post-incident review is to:
A) identify the root cause.
B) identify control improvements.
C) re-evaluate the impact of incidents.
D) identify vulnerabilities.
4. Which of the following is the MOST important objective of testing a security incident response plan?
A) Confirm that systems are recovered in the proper order
B) Verify the response assumptions are valid
C) Ensure the thoroughness of the response plan
D) Validate the business impact analysis
5. Which of the following is the PRIMARY objective of incident classification?
A) Complying with regulatory requirements
B) Increasing response efficiency
C) Enabling incident reporting
D) Reducing escalations to management
A) provide the team with practical experience in responding to incidents
B) ensure that the team can respond to any incident
C) remove the need to involve senior managers in the response process
D) enable the team to develop effective response interactions
2. An information security manager that is utilizing a public cloud is performing a root cause investigation of an incident that took place in that environment. Which ofMAIN -the following should be the security manager'sconcern?
A) Limited access to information
B) Shared infrastructure with other subscribers
C) Transaction records split into multiple cloud locations
D) Lack of security log filtering
3. The PRIMARY objective of performing a post-incident review is to:
A) identify the root cause.
B) identify control improvements.
C) re-evaluate the impact of incidents.
D) identify vulnerabilities.
4. Which of the following is the MOST important objective of testing a security incident response plan?
A) Confirm that systems are recovered in the proper order
B) Verify the response assumptions are valid
C) Ensure the thoroughness of the response plan
D) Validate the business impact analysis
5. Which of the following is the PRIMARY objective of incident classification?
A) Complying with regulatory requirements
B) Increasing response efficiency
C) Enabling incident reporting
D) Reducing escalations to management
1. Right Answer: A
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: B
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: B
Explanation:
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: B
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: B
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment