Isaca CISM Quiz 49 Topic 6 Questions 241-245

Question: 1

Which of the following is MOST important to consider when determining the criticality and sensitivity of an information asset?

ABusiness functions supported by the asset

BNumber of threats that can impact the asset

CResults of business continuity testing

DInvestment required to protect the asset

Show Answer

Question: 2

An organization is in the process of adopting a hybrid data infrastructure, transferring all non-core applications to cloud service providers, and maintaining all core business functions in-house. The

information security manager has determined a defense in depth strategy should be used. Which of the following BEST describes this strategy?

AMultifactor login requirements for cloud service applications, timeouts, and complex passwords

BSeparate security controls for applications, platforms, programs, and endpoints

CStrict enforcement of role-based access control (RBAC)

Show Answer

Question: 3

Which of the following is the PRIMARY reason that an information security manager would contract with an external provider to perform penetration testing?

ATo mitigate gaps in technical skills

BTo obtain an independent view of vulnerabilities

CTo obtain the full list of system vulnerabilities

DTo obtain an independent network security certification

Show Answer

Question: 4

An organization's security policy is to disable access to USB storage devices on laptops and desklops. Which of the following is the STRONGEST justification for granting an exception to the policy?

AUsers accept the risk of noncompliance.

BAccess is restricted to read-only.

CThe benefit is greater than the potential risk

DUSB storage devices are enabled based on user roles.

Show Answer

Question: 5

An information security manager wants to document requirements detailing the minimum security controls required for user workstations.

Which of the following resources would be MOST appropriate for this purpose'?

AProcedures

BStandards

CPolicies

DGuidelines

Show Answer

Isaca CISM Quiz:49 Topic:6 Questions:241-245