CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 214
1. To integrate security into system development life cycle (SDLC) processes, an organization MUST ensure that security:
A) is represented on the configuration control board.
B) performance metrics have been met.
C) roles and responsibilities have been defined.
D) is a prerequisite for completion of major phases.
2. When facilitating the alignment of corporate governance and information security governance, which of the following is the MOST important role of an organization's security steering committee?
A) Obtaining support for the integration from business owners
B) Defining metrics to demonstrate alignment
C) Obtaining approval for the information security budget
D) Evaluating and reporting the degree of integration
3. Which of the following is the PRIMARY purpose of establishing an information security governance framework?
A) To minimize security risks
B) To proactively address security objectives
C) To reduce security audit issues
D) To enhance business continuity planning
4. When developing an escalation process for an incident response plan, the information security manager should PRIMARILY consider the:
A) media coverage.
B) availability of technical resources.
C) incident response team.
D) affected stakeholders.
5. Which of the following would be the BEST way for an information security manager to justify ongoing annual maintenance fees associated with an intrusion prevention system (IPS)?
A) Perform a penetration test to demonstrate the ability to protect.
B) Perform industry research annually and document the overall ranking of the IPS.
C) Establish and present appropriate metrics that track performance.
D) Provide yearly competitive pricing to illustrate the value of the IPS.
A) is represented on the configuration control board.
B) performance metrics have been met.
C) roles and responsibilities have been defined.
D) is a prerequisite for completion of major phases.
2. When facilitating the alignment of corporate governance and information security governance, which of the following is the MOST important role of an organization's security steering committee?
A) Obtaining support for the integration from business owners
B) Defining metrics to demonstrate alignment
C) Obtaining approval for the information security budget
D) Evaluating and reporting the degree of integration
3. Which of the following is the PRIMARY purpose of establishing an information security governance framework?
A) To minimize security risks
B) To proactively address security objectives
C) To reduce security audit issues
D) To enhance business continuity planning
4. When developing an escalation process for an incident response plan, the information security manager should PRIMARILY consider the:
A) media coverage.
B) availability of technical resources.
C) incident response team.
D) affected stakeholders.
5. Which of the following would be the BEST way for an information security manager to justify ongoing annual maintenance fees associated with an intrusion prevention system (IPS)?
A) Perform a penetration test to demonstrate the ability to protect.
B) Perform industry research annually and document the overall ranking of the IPS.
C) Establish and present appropriate metrics that track performance.
D) Provide yearly competitive pricing to illustrate the value of the IPS.
1. Right Answer: D
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: C
Explanation:
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: C
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment