Free Access ISACA.CISM.v2022-03-24.q890 Practice Test (Page 101)

Question 496

Which of the following is the MOST important element of a response plan for IT security incidents?

A.Requirements for investigative evidence

B.Appropriate team members

C.Guidelines for preserving digital evidence

D.Test plans for containment and recovery procedures

Question 497

An organization has determined that one of its web servers has been compromised. Which of the following actions should be taken to preserve the evidence of the intrusion for forensic analysis and potential litigation?

A.Restrict physical and logical access to the server.

B.Reboot the server in a secure area to search for digital evidence.

C.Unplug the server from the power.

D.Run analysis tools to detect the source of the intrusion.

Question 498

To determine how a security breach occurred on the corporate network, a security manager looks at the logs of various devices. Which of the following BEST facilitates the correlation and review of these logs?

A.Database server

B.Domain name server (DNS)

C.Time server

D.Proxy server

Question 499

Which of the following messages would be MOST effective in obtaining senior management's commitment to information security management?

A.Effective security eliminates risk to the business

B.Security is a business product and not a process

C.Security supports and protects the business

D.Adopt a recognized framework with metrics

Question 500

Of the following, who should have PRIMARY responsibility for assessing the security risk associated with an outsourced cloud provider contract?

A.Compliance manager

B.Chief information officer

C.Information security manager

D.Service delivery manager

Other Version: 1113ISACA.CISM.v2025-02-21.q785; 659ISACA.CISM.v2024-12-21.q371; 12811ISACA.CISM.v2022-06-26.q752; 79ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 111Oracle.1z0-1196-25.v2025-09-12.q18; 110NetworkAppliance.NS0-162.v2025-09-12.q86; 151OCEG.GRCP.v2025-09-11.q211; 110HP.HPE0-V27.v2025-09-11.q78; 126Oracle.1Z0-1057-23.v2025-09-10.q47; 169Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 140SAP.C-S4EWM-2023.v2025-09-08.q83; 186TheSecOpsGroup.CNSP.v2025-09-08.q20; 283CFAInstitute.ESG-Investing.v2025-09-08.q173; 279PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132

Question 496

Question 497

Question 498

Question 499

Question 500

Download PDF File