Free Access ISACA.CISM.v2022-03-24.q890 Practice Test (Page 102)

Question 501

Which of the following activities performed by a database administrator (DBA) should be performed by a different person?

A.Deleting database activity logs

B.Implementing database optimization tools

C.Monitoring database usage

D.Defining backup and recovery procedures

Question 502

The MOST effective way to communicate the level of impact of information security risks on organizational objectives is to present

A.business impact analysis (BIA) results.

B.a risk heat map.

C.risk treatment options.

D.detailed threat analysis results.

Question 503

An organization shares customer information across its globally dispersed branches. Which of the following should be the GREATEST concern to information security management?

A.Conflicting data protection regulations

B.Decentralization of information security

C.Cross-cultural differences between branches

D.Insecure wide area networks (WANs)

Question 504

What does a network vulnerability assessment intend to identify?

A.0-day vulnerabilities

B.Malicious software and spyware

C.Security design flaws

D.Misconfiguration and missing updates

Question 505

A core business unit relies on an effective legacy system that does not meet the current security standards and threatens the enterprise network. Which of the following is the BEST course of action to address the situation?

A.Document the deficiencies in the risk register.

B.Disconnect the legacy system from the rest of the network.

C.Require that new systems that can meet the standards be implemented.

D.Develop processes to compensate for the deficiencies.

Other Version: 1113ISACA.CISM.v2025-02-21.q785; 659ISACA.CISM.v2024-12-21.q371; 12811ISACA.CISM.v2022-06-26.q752; 79ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 111Oracle.1z0-1196-25.v2025-09-12.q18; 110NetworkAppliance.NS0-162.v2025-09-12.q86; 151OCEG.GRCP.v2025-09-11.q211; 110HP.HPE0-V27.v2025-09-11.q78; 126Oracle.1Z0-1057-23.v2025-09-10.q47; 169Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 140SAP.C-S4EWM-2023.v2025-09-08.q83; 186TheSecOpsGroup.CNSP.v2025-09-08.q20; 282CFAInstitute.ESG-Investing.v2025-09-08.q173; 264PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132

Question 501

Question 502

Question 503

Question 504

Question 505

Download PDF File