Isaca CISM Quiz 75 Topic 4 Questions 371-375

Question: 1

Which of the following should be the PRIMARY consideration when implementing a data loss prevention (DLP) solution?

AData ownership

BSelection of tools

CData storage capabilities

DData classification

Show Answer

Question: 2

Which of the following should be the MOST important consideration when prioritizing risk re mediation?

AEvaluation of risk

BImpact of compliance

CDuration of exposure

DComparison to risk appetite

Show Answer

Question: 3

Following a significant change to the underlying code of an application, it is MOST important for the information security manager to:

Avalidate the user acceptance testing (UAT).

Bupdate the risk assessment.

Cmodify key risk indicators (KRIs).

Dinform senior management.

Show Answer

Question: 4

Which of the following would BEST help to ensure an organization's security program is aligned with business objectives?

ABusiness leaders receive annual information security awareness training.

BSecurity policies are reviewed and approved by the chief information officer (CIO).

CThe security strategy is reviewed and approved by the organization's steering committee,

DThe organization's board of directors includes a dedicated information security advisor..

Show Answer

Question: 5

The most important information for influencing management's support of inrormaao security control performance has improved?

Aan identification of the overall threat landscape

Ba demonstration of alignment with the business strategy

Can identification of organizational risk.

Da report of a successful attack on a competitor.

Show Answer

Isaca CISM Quiz:75 Topic:4 Questions:371-375