CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 237
1. A risk has been formally accepted and documented.Which of the following is the MOST important action for an information security manager?
A) Update risk tolerance levels.
B) Notify senior management and the board.
C) Monitor the environment for changes.
D) Re-evaluate the organization's risk appetite.
2. From a business perspective, the MOST important function of information security is to support:
A) predictable operations.
B) international standards.
C) security awareness.
D) corporate policy.
3. Which of the following would be MOST important to include in a business case to help obtain senior management's commitment for an information security investment?
A) Results of an independent audit
B) Industry best practices
C) Projected business value
D) Reference to business polices
4. Which of the following is the MOST effective method for assessing the effectiveness of a security awareness program?
A) Post-incident review
B) Social engineering test
C) Vulnerability scan
D) Tabletop test
5. Which of the following is the BEST way to sustain employee interest in information awareness in an organization?
A) Ensuring a common security awareness program for all staff
B) Relating security awareness programs to security policies
C) Ensuring all staff are involved
D) Using a variety of delivery methods
A) Update risk tolerance levels.
B) Notify senior management and the board.
C) Monitor the environment for changes.
D) Re-evaluate the organization's risk appetite.
2. From a business perspective, the MOST important function of information security is to support:
A) predictable operations.
B) international standards.
C) security awareness.
D) corporate policy.
3. Which of the following would be MOST important to include in a business case to help obtain senior management's commitment for an information security investment?
A) Results of an independent audit
B) Industry best practices
C) Projected business value
D) Reference to business polices
4. Which of the following is the MOST effective method for assessing the effectiveness of a security awareness program?
A) Post-incident review
B) Social engineering test
C) Vulnerability scan
D) Tabletop test
5. Which of the following is the BEST way to sustain employee interest in information awareness in an organization?
A) Ensuring a common security awareness program for all staff
B) Relating security awareness programs to security policies
C) Ensuring all staff are involved
D) Using a variety of delivery methods
1. Right Answer: D
Explanation:
2. Right Answer: D
Explanation:
3. Right Answer: C
Explanation:
4. Right Answer: B
Explanation:
5. Right Answer: D
Explanation:
Explanation:
2. Right Answer: D
Explanation:
3. Right Answer: C
Explanation:
4. Right Answer: B
Explanation:
5. Right Answer: D
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment