Isaca CISM Quiz 172 Topic 1 Questions 856-860

Question: 1

Several significant risks have been identified after a centralized risk register was compiled and prioritized. The information security manager s MOST important action is to:

Aprovide senior management with risk treatment options.

Bdesign and implement controls to reduce the risk.

Cconsult external third parties on how to treat the risk.

Densure that employees are aware of the risk.

Show Answer

Question: 2

Which of the following is the GREATEST risk to consider when a rival organization purchases a business unit within an organization?

AAccess and permissions to the corporate network from the business unit will remain after the sale.

BThe business unit's confidential information will be transferred to the rival organization during the separation.

CSenior business management will not understand technical risks.

DLoss of corporate knowledge.

Show Answer

Question: 3

After logging in to a web application, additional authentication is required at various application points. Which of the following is the PRIMARY reason for such an approach?

ATo ensure access rights meet classification requirements

BTo support strong two-factor authentication protocols

CTo meet single sign-on authentication standards

DTo implement a challenge response test

Show Answer

Question: 4

Which of the following is the BEST way to ensure the effectiveness of a role-based access scheme?

AImplement a self-service password system.

BReview the number of unauthorized access attempts.

CImplement centralized event logging.

DReview the number of exceptions granted.

Show Answer

Question: 5

Which of the following circumstances would MOST likely require a review and update to an organization's information security incident response plan?

AA new business application has been implemented.

BA new business strategy has been developed.

CThe organizational structure has changed.

DA high-risk vulnerability has been detected.

Show Answer

Isaca CISM Quiz:172 Topic:1 Questions:856-860