Isaca CISM Quiz 325 Topic 1 Questions 1621-1625

Question: 1

An information security manager learns through a threat intelligence service that the organization may be targeted for a major emerging threat. Which of the following is the information security manager's FIRST course of action?

AConduct an information security audit.

BValidate the relevance of the information.

CPerform a gap analysis.

DInform senior management

Show Answer

Question: 2

Which of the following should be the PRIMARY basis for a severity hierarchy for information security incident classification?

AAvailability of resources

BRoot cause analysis results

CAdverse effects on the business

DLegal and regulatory requirements

Show Answer

Question: 3

For the information security manager, integrating the various assurance functions of an organization is important PRIMARILY to enable:

Aconsistent security.

Bcomprehensive audits

Ca security-aware culture

Dcompliance with policy

Show Answer

Question: 4

Which of the following tasks should be performed once a disaster recovery plan (DRP) has been developed?

ADevelop the test plan.

BAnalyze the business impact.

CDefine response team roles.

DIdentify recovery time objectives (RTOs).

Show Answer

Question: 5

Which of the following would be the GREATEST threat posed by a distributed denial of service (DDoS) attack on a publicly facing .....

APrevention of authorized access

BExecution of unauthorized commands

CDefacement of website content

DUnauthorized access to resources

Show Answer

Isaca CISM Quiz:325 Topic:1 Questions:1621-1625