Isaca CISM Quiz 50 Topic 3 Questions 246-250

Question: 1

Which of the following is the BEST way to ensure that organizational security policies comply with data security regulatory requirements?

AOutsource compliance activities.

BObtain annual sign-off from executive management.

CSend the policies to stakeholders for review.

DAlign the policies to the most stringent global regulations.

Show Answer

Question: 2

Which of the following is the MOST effective method of preventing deliberate internal security breaches?

AWell-designed firewall system

BBiometric security access control

CWell-designed intrusion detection system (IDS)

DScreening prospective employees

Show Answer

Question: 3

Which of the following is the BEST way to strengthen the security of corporate data on a personal mobile device?

AUsing containerized software

BMandating use of pre-approved devices

CImplementing a strong password policy

DImplementing multi-factor authentication

Show Answer

Question: 4

The business advantage of implementing authentication tokens is that they:

Aimprove access security.

Breduce administrative workload.

Creduce overall cost.

Dprovide nonrepudiation

Show Answer

Question: 5

When establishing classifications of security incidents for the development of an incident response plan, which of the following provides the MOST valuable input?

AVulnerability assessment results

BThe business continuity plan (BCP)

CRecommendations from senior management

DBusiness impact analysis (BLA) results

Show Answer

Isaca CISM Quiz:50 Topic:3 Questions:246-250