CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 209
1. Which of the following metrics is MOST appropriate for evaluating the incident notification process?
A) Average total cost of downtime per reported incident
B) Average number of incidents per reporting period
C) Elapsed time between response and resolution
D) Elapsed time between detection, reporting and response
2. It is suspected that key e-mails have been viewed by unauthorized parties. The e-mail administrator conducted an investigation but it has not returned any information relating to the incident, and leaks are continuing. Which of the following is the BEST recommended course of action to senior management?
A) Commence security training for staff at the organization.
B) Arrange for an independent review.
C) Rebuild the e-mail application.
D) Restrict the distribution of confidential e-mails.
3. Which of the following be MOST effective in reducing the financial impact following a security breach leading to data disclosure?
A) A business continuity plan
B) Backup and recovery strategy
C) A data loss prevention (DLP) solution
D) An incident response plan
4. Which of the following BEST prepares a computer incident response team for a variety of information security scenarios?
A) Tabletop exercises
B) Forensics certification
C) Penetration tests
D) Disaster recovery drills
5. Which of the following BEST facilitates the effective execution of an incident response plan?
A) The response team is trained on the plan.
B) The plan is based on risk assessment results.
C) The incident response plan aligns with the IT disaster recovery plan.
D) The plan is based on industry best practice.
A) Average total cost of downtime per reported incident
B) Average number of incidents per reporting period
C) Elapsed time between response and resolution
D) Elapsed time between detection, reporting and response
2. It is suspected that key e-mails have been viewed by unauthorized parties. The e-mail administrator conducted an investigation but it has not returned any information relating to the incident, and leaks are continuing. Which of the following is the BEST recommended course of action to senior management?
A) Commence security training for staff at the organization.
B) Arrange for an independent review.
C) Rebuild the e-mail application.
D) Restrict the distribution of confidential e-mails.
3. Which of the following be MOST effective in reducing the financial impact following a security breach leading to data disclosure?
A) A business continuity plan
B) Backup and recovery strategy
C) A data loss prevention (DLP) solution
D) An incident response plan
4. Which of the following BEST prepares a computer incident response team for a variety of information security scenarios?
A) Tabletop exercises
B) Forensics certification
C) Penetration tests
D) Disaster recovery drills
5. Which of the following BEST facilitates the effective execution of an incident response plan?
A) The response team is trained on the plan.
B) The plan is based on risk assessment results.
C) The incident response plan aligns with the IT disaster recovery plan.
D) The plan is based on industry best practice.
1. Right Answer: D
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: B
Explanation:
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: B
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment