Free Access ISACA.CISM.v2022-03-24.q890 Practice Test (Page 120)

Question 591

Who is responsible for raising awareness of the need for adequate funding for risk action plans?

A.Chief information officer (CIO)

B.Chief financial officer (CFO)

C.Information security manager

D.Business unit management

Question 592

When establishing classifications of security incidents for the development of an incident response plan, which of the following provides the MOST valuable input?

A.Recommendations from senior management

B.The business continuity plan (BCP)

C.Business impact analysis (BIA) results

D.Vulnerability assessment results

Question 593

Which of the ager to regularly report to senior management?

A.Impact of untreated risks

B.Threat analysis reports

C.Results of penetration tests

D.Audit reports

Question 594

A customer credit card database has been breached by hackers. The FIRST step in dealing with this attack should be to:

A.confirm the incident.

B.notify senior management.

C.start containment.

D.notify law enforcement.

Question 595

Which of the following processes would BEST aid an information security manager in resolving systemic security issues?

A.Reinforced security controls

B.Business impact anal/sis (BIA)

C.Root cause analysis

D.Security reviews

Other Version: 1112ISACA.CISM.v2025-02-21.q785; 659ISACA.CISM.v2024-12-21.q371; 12805ISACA.CISM.v2022-06-26.q752; 79ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 108Oracle.1z0-1196-25.v2025-09-12.q18; 109NetworkAppliance.NS0-162.v2025-09-12.q86; 149OCEG.GRCP.v2025-09-11.q211; 109HP.HPE0-V27.v2025-09-11.q78; 125Oracle.1Z0-1057-23.v2025-09-10.q47; 161Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 139SAP.C-S4EWM-2023.v2025-09-08.q83; 183TheSecOpsGroup.CNSP.v2025-09-08.q20; 267CFAInstitute.ESG-Investing.v2025-09-08.q173; 257PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132

Question 591

Question 592

Question 593

Question 594

Question 595

Download PDF File