Isaca CISM Quiz 237 Topic 2 Questions 1181-1185

Question: 1

An information security manager has identified and implemented mitigating controls according to industry best practices. Which of the following is the GREATEST risk associated with this approach?

AThe security program may not be aligned with organizational objectives.

BImportant security controls may be missed without senior management input.

CThe mitigation measures may not be updated in a timely manner.

DThe cost of control implementation may be too high.

Show Answer

Question: 2

When considering whether to adopt bring your own device (BYOD). it is MOST important for the information security manager to ensure that

Asecurity controls are applied to each device when joining the network.

Bthe applications are tested prior to implementation

Cusers have read and signed acceptable use agreements.

Dbusiness leaders have an understanding of security risks

Show Answer

Question: 3

Which of the following is the information security manager's PRIMARY role in the information assets classification process?

ADeveloping an asset classification model

BAssigning the asset classification level

CSecuring assets in accordance with their classification

DAssigning asset ownership

Show Answer

Question: 4

To meet operational business needs. IT staff bypassed the change process and applied an unauthorized update to a critical business system Which of the following is the information security manager's BEST course of action?

AAssess the security risks introduced by the change.

BConsult with supervisors of IT staff regarding disciplinary action

CUpdate the system configuration item to reflect the change

DInstruct IT staff to revert the unauthorized update

Show Answer

Question: 5

What is the MOST important role of an organization's data custodian in support of the information security function?

AAssessing data security risks to the organization

BApplying approved security policies

CEvaluating data security technology vendors

DApproving access rights to departmental data

Show Answer

Isaca CISM Quiz:237 Topic:2 Questions:1181-1185