CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 223
1. Which of the following is a PRIMARY function of an incident response team?
A) To provide a business impact assessment
B) To provide effective incident mitigation
C) To provide a single point of contact for critical incidents
D) To provide a risk assessment for zero-day vulnerabilities
2. Which of the following is a PRIMARY security responsibility of an information owner?
A) Deciding what level of classification the information requires
B) Testing information classification controls
C) Maintaining the integrity of data in the information system
D) Determining the controls associated with information classification
3. What is the PRIMARY purpose of an unannounced disaster recovery exercise?
A) To evaluate how personnel react to the situation
B) To provide metrics to senior management
C) To estimate the recovery time objective (RTO)
D) To assess service level agreements (SLAs)
4. When implementing a new risk assessment methodology, which of the following is the MOST important requirement?
A) Risk assessments must be conducted by certified staff.
B) The methodology must be approved by the chief executive officer.
C) Risk assessments must be reviewed annually.
D) The methodology used must be consistent across the organization.
5. Which of the following is MOST effective in the strategic alignment of security initiatives?
A) Key information security policies are updated on a regular basis.
B) A security steering committee is set up within the IT department.
C) Business leaders participate in information security decision making.
D) Policies are created with input from business unit managers.
A) To provide a business impact assessment
B) To provide effective incident mitigation
C) To provide a single point of contact for critical incidents
D) To provide a risk assessment for zero-day vulnerabilities
2. Which of the following is a PRIMARY security responsibility of an information owner?
A) Deciding what level of classification the information requires
B) Testing information classification controls
C) Maintaining the integrity of data in the information system
D) Determining the controls associated with information classification
3. What is the PRIMARY purpose of an unannounced disaster recovery exercise?
A) To evaluate how personnel react to the situation
B) To provide metrics to senior management
C) To estimate the recovery time objective (RTO)
D) To assess service level agreements (SLAs)
4. When implementing a new risk assessment methodology, which of the following is the MOST important requirement?
A) Risk assessments must be conducted by certified staff.
B) The methodology must be approved by the chief executive officer.
C) Risk assessments must be reviewed annually.
D) The methodology used must be consistent across the organization.
5. Which of the following is MOST effective in the strategic alignment of security initiatives?
A) Key information security policies are updated on a regular basis.
B) A security steering committee is set up within the IT department.
C) Business leaders participate in information security decision making.
D) Policies are created with input from business unit managers.
1. Right Answer: B
Explanation:
2. Right Answer: C
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: D
Explanation:
5. Right Answer: D
Explanation:
Explanation:
2. Right Answer: C
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: D
Explanation:
5. Right Answer: D
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment