©PREP4EXAMS 2024/2025 REAL EXAM DUMPS Tuesday, August 6, 2024 10,57 AM
CISM 1 of 4 Practice Questions and Answers (100% Pass)
Which of the following should be the FIRST step in developing an information
security plan?
A.
Perform a technical vulnerabilities assessment
B.
Analyze the current business strategy
C.
Perform a business impact analysis
D.
Assess the current levels of security awareness - Answer✔️✔️-B.
Analyze the current business strategy
The MOST appropriate role for senior management in supporting information
security is the:
A.
evaluation of vendors offering security products.
1
,©PREP4EXAMS 2024/2025 REAL EXAM DUMPS Tuesday, August 6, 2024 10,57 AM
B.
assessment of risks to the organization.
C.
approval of policy statements and funding.
D.
monitoring adherence to regulatory requirements. - Answer✔️✔️-C.
approval of policy statements and funding.
Senior management commitment and support for information security can BEST
be obtained
through presentations that:
A.
use illustrative examples of successful attacks.
B.
explain the technical risks to the organization.
C.
evaluate the organization against best security practices.
2
,©PREP4EXAMS 2024/2025 REAL EXAM DUMPS Tuesday, August 6, 2024 10,57 AM
D.
tie security risks to key business objectives. - Answer✔️✔️-D.
tie security risks to key business objectives.
Which of the following would BEST ensure the success of information security
governance within
an organization?
A.
Steering committees approve security projects
B.
Security policy training provided to all managers
C.
Security training available to all employees on the intranet
D.
Steering committees enforce compliance with laws and regulations - Answer✔️✔️-
A.
Steering committees approve security projects
3
, ©PREP4EXAMS 2024/2025 REAL EXAM DUMPS Tuesday, August 6, 2024 10,57 AM
Information security governance is PRIMARILY driven by:
A.
technology constraints.
B.
regulatory requirements.
C.
litigation potential.
D.
business strategy. - Answer✔️✔️-D.
business strategy.
Which of the following represents the MAJOR focus of privacy regulations?
A.
Unrestricted data mining
B.
Identity theft
C.
4
CISM 1 of 4 Practice Questions and Answers (100% Pass)
Which of the following should be the FIRST step in developing an information
security plan?
A.
Perform a technical vulnerabilities assessment
B.
Analyze the current business strategy
C.
Perform a business impact analysis
D.
Assess the current levels of security awareness - Answer✔️✔️-B.
Analyze the current business strategy
The MOST appropriate role for senior management in supporting information
security is the:
A.
evaluation of vendors offering security products.
1
,©PREP4EXAMS 2024/2025 REAL EXAM DUMPS Tuesday, August 6, 2024 10,57 AM
B.
assessment of risks to the organization.
C.
approval of policy statements and funding.
D.
monitoring adherence to regulatory requirements. - Answer✔️✔️-C.
approval of policy statements and funding.
Senior management commitment and support for information security can BEST
be obtained
through presentations that:
A.
use illustrative examples of successful attacks.
B.
explain the technical risks to the organization.
C.
evaluate the organization against best security practices.
2
,©PREP4EXAMS 2024/2025 REAL EXAM DUMPS Tuesday, August 6, 2024 10,57 AM
D.
tie security risks to key business objectives. - Answer✔️✔️-D.
tie security risks to key business objectives.
Which of the following would BEST ensure the success of information security
governance within
an organization?
A.
Steering committees approve security projects
B.
Security policy training provided to all managers
C.
Security training available to all employees on the intranet
D.
Steering committees enforce compliance with laws and regulations - Answer✔️✔️-
A.
Steering committees approve security projects
3
, ©PREP4EXAMS 2024/2025 REAL EXAM DUMPS Tuesday, August 6, 2024 10,57 AM
Information security governance is PRIMARILY driven by:
A.
technology constraints.
B.
regulatory requirements.
C.
litigation potential.
D.
business strategy. - Answer✔️✔️-D.
business strategy.
Which of the following represents the MAJOR focus of privacy regulations?
A.
Unrestricted data mining
B.
Identity theft
C.
4
