Free Access ISACA.CISM.v2022-03-24.q890 Practice Test (Page 10)

Question 41

An organization is automating data protection by implementing a data loss prevention (DLP) solution. Which of the following should the Information security manager do FIRST?

A.Perform a cost-benefit analysis.

B.Evaluate potential DLP solutions.

C.Define the threshold for reporting data loss

D.Define a data classification schema

Question 42

An information security manager must understand the relationship between information security and business operations in order to:

A.support organizational objectives.

B.determine likely areas of noncompliance.

C.assess the possible impacts of compromise.

D.understand the threats to the business.

Question 43

An organization has implemented a bring your own device (BYOD)} program. Which of the following is the GREATEST risk to the organization?

A.Device theft

B.Device incompatibility

C.Data leakage

D.Lack of nonrepudiation

Question 44

Which of the following BEST supports the incident management process for attacks on an organization' s supply chain?

A.Performing integration testing with vendor systems

B.Including service level agreements (SLAs) in vendor contracts

C.Establishing communication paths with vendors

D.Requiring security awareness training for vendor staff

Question 45

Which of the following is MOST important to the successful development of an information security strategy?

A.An implemented development life cycle process

B.Approved policies and standards

C.A well-implemented governance framework

D.Current state and desired objectives

Other Version: 1009ISACA.CISM.v2025-02-21.q785; 619ISACA.CISM.v2024-12-21.q371; 12706ISACA.CISM.v2022-06-26.q752; 79ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 117Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 162TheSecOpsGroup.CNSP.v2025-09-08.q20; 220CFAInstitute.ESG-Investing.v2025-09-08.q173; 155PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 145Salesforce.Data-Architect.v2025-09-05.q216; 139Adobe.AD0-E605.v2025-09-05.q50; 183Nutanix.NCP-MCI-6.10.v2025-09-05.q55; 114Oracle.1z0-591.v2025-09-05.q104

Question 41

Question 42

Question 43

Question 44

Question 45

Download PDF File