Isaca CISM Quiz 80 Topic 3 Questions 396-400

Question: 1

Meeting which of the following security objectives BEST ensures that information is protected against unauthorized modification?

AAvailability

BIntegrity

CConfidentiality

DAuthenticity

Show Answer

Question: 2

Which of the following is the BEST way for an information security manager to promote the integration of information security considerations into key business processes?

AProvide information security awareness training.

BConduct a business impact analysis (BIA).

CFacilitate the creation of an information security steering group

DConduct information security briefings for executives

Show Answer

Question: 3

Senior management learns of several web application security incidents and wants to know the exposure risk to the organization. What is the information security manager's BEST course of action?

APerform a vulnerability assessment.

BReview audit logs from IT systems.

CActivate the incident response plan

DAssess IT system configurations

Show Answer

Question: 4

A message is being sent with a hash. The risk of an attacker changing the message and generating an authentic hash value c*n be mitigated by:

Agenerating hash output that is the same size as the original message,

Brequiring the recipient to use a different hash algorithm,

Cusing the senders public key to encrypt the message.

Dusing a secret key m conjunction with the hash algorithm.

Show Answer

Question: 5

Which of the following sites would be MOST appropriate in the case of a very short recovery time objective (RTO)?

ARedundant

BShared

CWarm

DMobile

Show Answer

Isaca CISM Quiz:80 Topic:3 Questions:396-400