Isaca CISM Quiz 239 Topic 7 Questions 1191-1195

Question: 1

Who should be responsible for determining the classification of data within a database used in conjunction with an enterprise application?

AData owner

BInformation security manager

CDatabase architect

DDatabase administrator

Show Answer

Question: 2

Which of the following defines the MOST comprehensive set of security requirements for a newly developed information system?

ABaseline controls

BRisk assessment results

CAudit findings

DKey risk indicators (KRls)

Show Answer

Question: 3

A payroll application system accepts individual user sign-on IDs and then connects to its database using a single application ID. The GREATEST weakness under this system architecture is that:

Athe database becomes unavailable if the password of The application ID expires.

Ban incident involving unauthorized access to data cannot be tied to a specific user

Cusers can gam direct access to the application ID and circumvent data controls,

Dwhen multiple sessions with the same application ID collide, the database locks up

Show Answer

Question: 4

Senior management is alarmed by recent media reports of severe security incidents at competing organizations Which of the following would provide the BEST assurance that the organization's current security measures are performing adequately?

AReview the intrusion prevention system (IPS) logs

BRequire third-party penetration testing

CReview the intrusion detection system (IDS) logs

DRequire internal penetration testing

Show Answer

Question: 5

An information security manager recently received funding for a vulnerability scanning tool to replace manual assessment techniques and needs to justify the expense of the tool going forward. Which of the following metrics would BEST indicate the tool is effective?

AAn increase in the severity of detected vulnerabilities

BAn increase in the number of detected vulnerabilities

CA decrease in the lime needed to detect vulnerabilities

DA decrease in staff needed to detect vulnerabilities

Show Answer

Isaca CISM Quiz:239 Topic:7 Questions:1191-1195