Isaca CISM Quiz 161 Topic 5 Questions 801-805

Question: 1

Web application firewalls are needed in addition to other intrusion prevention and detection technology PRIMARILY because:

Aweb services require unique forensic evidence

Bthey prevent modification of application source code

Cthey recognize web application protocols.

Dweb services are prone to attacks.

Show Answer

Question: 2

A new organization has been hit with a ransomware attack that is critically impacting its business operations. The organization does not yet have a proper incident response plan, but it does have a backup procedure for restoration of dat

a. Which of the following should be the FIRST course of action?

AIsolate the affected system.

BContact the legal department.

CRecommend that management pay the ransom.

DEstablish an incident response plan.

Show Answer

Question: 3

Which of the following is a PRIMARY objective of incident classification?

AIncreasing response efficiency

BEnabling incident reporting

CComplying with regulatory requirements

DReducing escalations to management

Show Answer

Question: 4

An organization is leveraging tablets to replace desktop computers shared by shift-based staff. These tables contain critical business data and are inherently at increased risk of theft. Which of the following will BEST help to mitigate this risk?

AConduct a mobile device risk assessment.

BCreate an acceptable use policy.

CDeploy mobile device management (MDM).

DImplement remote wipe capability.

Show Answer

Question: 5

Which of the following would be MOST helpful to reduce the amount of time needed by an incident response team to determine appropriate actions?

ARehearsing incident response procedures rote, and responsibilities

BProviding annual awareness training regarding incident response for team members

CValidating the incident response plan against industry best practices

DDefining modern seventy levels during a business impact analysis (BIA)

Show Answer

Isaca CISM Quiz:161 Topic:5 Questions:801-805