CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 243
1. What is the MOST important factor for determining prioritization of incident response?
A) Service level agreements (SLAs) pertaining to the impacted systems
B) The potential impact to the business
C) The time to restore the impacted systems
D) The availability of specialized technical staff
2. Relying on which of the following methods when detecting new threats using IDS should be of MOST concern?
A) Statistical pattern recognition
B) Attack signatures
C) Heuristic analysis
D) Traffic analysis
3. When developing a classification method for incidents, the categories MUST be:
A) quantitative defined.
B) regularly reviewed.
C) specific to situations.
D) assigned to incident handlers.
4. Which of the following is the PRIMARY objective of an incident communication plan?
A) To convey information about the incident to those affected by it
B) To prevent reputational damage to the organization
C) To prevent unannounced visits from the media during crisis
D) To fulfill regulatory requirements for incident response
5. Which of the following is MOST -helpful to management in determining whether risks are within an organization's tolerance level?
A) Audit findings
B) Heat map
C) Penetration test results
D) Maturity level
A) Service level agreements (SLAs) pertaining to the impacted systems
B) The potential impact to the business
C) The time to restore the impacted systems
D) The availability of specialized technical staff
2. Relying on which of the following methods when detecting new threats using IDS should be of MOST concern?
A) Statistical pattern recognition
B) Attack signatures
C) Heuristic analysis
D) Traffic analysis
3. When developing a classification method for incidents, the categories MUST be:
A) quantitative defined.
B) regularly reviewed.
C) specific to situations.
D) assigned to incident handlers.
4. Which of the following is the PRIMARY objective of an incident communication plan?
A) To convey information about the incident to those affected by it
B) To prevent reputational damage to the organization
C) To prevent unannounced visits from the media during crisis
D) To fulfill regulatory requirements for incident response
5. Which of the following is MOST -helpful to management in determining whether risks are within an organization's tolerance level?
A) Audit findings
B) Heat map
C) Penetration test results
D) Maturity level
1. Right Answer: B
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: B
Explanation:
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: B
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment