CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 210
1. An information security manager developing an incident response plan MUST ensure it includes:
A) an inventory of critical data
B) criteria for escalation
C) critical infrastructure diagrams
D) a business impact analysis
2. In a cloud technology environment, which of the following would pose the GREATEST challenge to the investigation of security incidents?
A) Access to the hardware
B) Data encryption
C) Non-standard event logs
D) Compressed customer data
3. What is the MAIN reason for an organization to develop an incident response plan?
A) Trigger immediate recovery procedures.
B) Identify training requirements for the incident response team.
C) Prioritize treatment based on incident criticality.
D) Provide a process for notifying stakeholders of the incident.
4. Who is MOST important to include when establishing the response process for a significant security breach that would impact the IT infrastructure and cause customer data loss?
A) An independent auditor for identification of control deficiencies
B) A damage assessment expert for calculating losses
C) A forensics expert for evidence management
D) A penetration tester to validate the attack
5. An information security manager has been asked to determine whether an information security initiative has reduced risk to an acceptable level. Which of the following activities would provide the BEST information for the information security manager to draw a conclusion?
A) Initiating a cost-benefit analysis of the implemented controls
B) Reviewing the risk register
C) Conducting a business impact analysis (BIA)
D) Performing a risk assessment
A) an inventory of critical data
B) criteria for escalation
C) critical infrastructure diagrams
D) a business impact analysis
2. In a cloud technology environment, which of the following would pose the GREATEST challenge to the investigation of security incidents?
A) Access to the hardware
B) Data encryption
C) Non-standard event logs
D) Compressed customer data
3. What is the MAIN reason for an organization to develop an incident response plan?
A) Trigger immediate recovery procedures.
B) Identify training requirements for the incident response team.
C) Prioritize treatment based on incident criticality.
D) Provide a process for notifying stakeholders of the incident.
4. Who is MOST important to include when establishing the response process for a significant security breach that would impact the IT infrastructure and cause customer data loss?
A) An independent auditor for identification of control deficiencies
B) A damage assessment expert for calculating losses
C) A forensics expert for evidence management
D) A penetration tester to validate the attack
5. An information security manager has been asked to determine whether an information security initiative has reduced risk to an acceptable level. Which of the following activities would provide the BEST information for the information security manager to draw a conclusion?
A) Initiating a cost-benefit analysis of the implemented controls
B) Reviewing the risk register
C) Conducting a business impact analysis (BIA)
D) Performing a risk assessment
1. Right Answer: B
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: D
Explanation:
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: D
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment