Isaca CISM Quiz 150 Topic 7 Questions 746-750

Question: 1

What should be the PRIMARY objective of conducting interviews with business unit managers when developing an information security strategy?

ADetermine information types.

BObtain information on departmental goals.

CIdentify data and system ownership.

DClassify information assets.

Show Answer

Question: 2

Which of the following would BEST help to ensure compliance with an organizations information security requirements by an IT service provider?

ADefining information security requirements with internal IT

BRequiring an external security audit of the IT service provider

CDefining the business recovery plan with the IT service provider

DRequiring regular reporting from the IT service provider

Show Answer

Question: 3

Which of the following is the BEST way for an information security manager to justify continued investment in the information security program when the organization is facing significant budget cuts?

ADemonstrate that implemented program controls are effective.

BDemonstrate that the program enables business activities.

CDemonstrate an increase in ransomware attacks targeting peer organizations.

DDemonstrate the readiness of business continuity plans.

Show Answer

Question: 4

Which of the following is the MOST important requirement for the successful implementation of security governance?

AImplementing a security balanced scorecard

BAligning to an international security framework

CPerforming an enterprise-wide risk assessment

DMapping to organizational strategies

Show Answer

Question: 5

An organization s HR department would like to outsource its employee management system to a cloud-hosted solution due to features and cost savings offered. Management has identified this solution as a business need and wants to move forward. What should be the PRIMARY role of information security in this effort?

AEnsure a security audit is performed of the service provider.

BEnsure the service provider has the appropriate certifications.

CExplain security issues associated with the solution to management.

DDetermine how to securely implement the solution.

Show Answer

Isaca CISM Quiz:150 Topic:7 Questions:746-750