Corporate governance mechanisms and systems Study guides, Class notes & Summaries

Domain 2 CISA Review 152 Questions, Answers & Explanations Manual, 12th Edition | Print | English AZ-148 An enterprise's risk appetite is BEST established by: A. The chief legal officer B. Security management C. The audit committee D. The steering committee - CORRECT ANSWER D is the correct answer. Justification: A. Although chief legal officers can give guidance regarding legal issues on the policy, they cannot determine the risk appetite. B. The security management team is concerne...

CISM 2023 EXAM (BRAND NEW!!) TEST BANK QUESTIONS AND CORRECT DETAILED ANSWERS WITH RATIONALES (VERIFIED ANSWERS) |ALREADY GRADED A+ What is Information Security Governance. Note there are 5 desired outcomes: - ANSWER- 1. Strategic alignment of information security with business strategy to support organizational objectives 2. Risk management by executing appropriate measures to manage and mitigate risks and reduce potential impacts on information resources to an acceptable level ...

SPHR Mindedge Exam 91 Questions with Verified Answers Vision Statement - CORRECT ANSWER A vision statement* should be a concise assertion of what the company is, who it serves, and where it is going. The vision statement should be an inspiring piece that provides everyone involved in the organization—from employees to shareholders to customers—insight into the organization's future. Mission Statement - CORRECT ANSWER Mission statements elaborate on vision statements by providing addit...

CISA examtopics 201-300 Exam Questions with Verified Answers 201. During a project meeting for the implementation of an enterprise resource planning (ERP). a new requirement is requested by the finance department. Which of the following would BEST indicate to an IS auditor that the resulting risk to the project has been assessed? A. The project status as reported in the meeting minutes B. The analysis of the cost and time impact of the requirement C. The updated business requirements D...

RSK4802 QUESTIONS AND ANSWERS REVISION STUDY PACK lOMoARcPSD| QUESTION1 QUESTION2 With the aid of a diagram, identify the 5 steps in the Risk Management process. Discuss the NB9s of each steps in the context of any organization of choice. 1. Identify potential risks What can possibly go wrong? The four main risk categories of risk are hazard risks, such as fires or injuries; operational risks, including turnover and supplier failure; financial risks, such as economic r...

Confidentiality Referred to as Least privileged -users should be given only enough privilege to perform their duties, and no more. ensure that no unauthorized access to information is permitted and that accidental disclosure of sensitive information is not possible. Integrity Keep data pure and trustworthy by protecting system data from intentional or accidental changes. Prevent unauthorized users from making modifications to data or programs Prevent authorized users from making i...

CISM Practice Questions - Chapter 1 Already Graded A CH1: What are the 6 outcomes of Security Governance? 1. Strategic Alignment 2. Risk Management 3. Value Delivery 4. Resource Optimization 5. Performance Measurement 6 Assurance Process Integration CH1: A security strategy is important for an organization PRIMARILY because it: A. provides a basis for determining the best logical security architecture for the organization. B. provides the approach to acheiving the outcomes management wants. ...

CompTIA security + part 4 Exam 250 Questions with Verified Answers 751.SIM (subscriber identity module) - CORRECT ANSWER 751.A small chip card that identifies the user and phone number of a mobile device, via an International Mobile Subscriber Identity (ISMI). meter - CORRECT ANSWER 752.A utility meter that can submit readings to the supplier without user intervention. 753.SoC (system-on-chip) - CORRECT ANSWER 753.A processor that integrates the platform functionality of multiple logic...

CISA QAE Domain 5 Exam 89 Questions with Verified Answers When reviewing an organization's logical access security to its remote systems, which of the following would be of GREATEST concern to an IS auditor? - CORRECT ANSWER Unencrypted passwords are used. When evaluating the technical aspects of logical security, unencrypted passwords represent the greatest risk because it would be assumed that remote access would be over an untrusted network where passwords could be discovered. Which...

CISA Exam 388 Questions with Verified Answers Which of the following controls will MOST effectively detect the presence of bursts of errors in network transmissions? a. Parity check b. Echo check c. Block sum check d. Cyclic redundancy check - CORRECT ANSWER d. Cyclic redundancy check Which of the following issues associated with a data center's closed circuit television (CCTV) surveillance cameras should be of MOST concern to an IS auditor? A. CCTV recordings are not regularly re...