Free Access ISACA.CISM.v2022-03-24.q890 Practice Test (Page 111)

Question 546

The FIRST step in establishing a security governance program is to:

A.conduct a risk assessment.

B.conduct a workshop for all end users.

C.prepare a security budget.

D.obtain high-level sponsorship.

Question 547

After a security incident has been contained, which of the following should be done FIRST?

A.Notify local authorities.

B.Conduct forensic analysis.

C.Perform a complete wipe of the affected system.

D.Restore the affected system from backup.

Question 548

Which of the following should be the FIRST step to ensure system updates are applied in a timely manner?

A.Run a patch management scan to discover which patches are missing from each machine.

B.Create a regression test plan to ensure business operation is not interrupted.

C.Cross-reference all missing patches to establish the date each patch was introduced.

D.Establish a risk-based assessment process for prioritizing patch implementation.

Question 549

What should be the PRIMARY basis for prioritizing incident containment?

A.Input from senior management

B.The business value of affected assets

C.The recovery cost of affected assets

D.Legal and regulatory requirements

Question 550

An IS manager has decided to implement a security system to monitor access to the Internet and prevent access to numerous sites. Immediately upon installation, employees Hood the IT helpdesk with complaints of being unable to perform business functions on Internet sites. This is an example of:

A.conflicting security controls with organizational needs.

B.strong protection of information resources.

C.implementing appropriate controls to reduce risk.

D.proving information security's protective abilities.

Other Version: 8724ISACA.CISM.v2025-02-21.q785; 1780ISACA.CISM.v2024-12-21.q371; 14205ISACA.CISM.v2022-06-26.q752; 83ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 277PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 389Nokia.4A0-113.v2026-05-01.q69; 423EC-COUNCIL.312-49v11.v2026-04-30.q214; 344Microsoft.MB-820.v2026-04-30.q101; 262Salesforce.MC-202.v2026-04-30.q57; 306BICSI.INSTC_V8.v2026-04-29.q53; 434NMLS.MLO.v2026-04-28.q82; 292NCARB.Project-Management.v2026-04-28.q27; 524EMC.D-AV-DY-23.v2026-04-27.q184; 1360ServiceNow.CSA.v2026-04-27.q483

Question 546

Question 547

Question 548

Question 549

Question 550

Download PDF File