Free Access ISACA.CISM.v2022-03-24.q890 Practice Test (Page 130)

Question 641

An organization has decided to implement a security information and event management (SIEM) system. It is MOST important for the organization to consider:

A.threat assessments.

B.data ownership.

C.industry best practices.

D.log sources.

Question 642

The BEST strategy for risk management is to:

A.achieve a balance between risk and organizational goals.

B.reduce risk to an acceptable level.

C.ensure that policy development properly considers organizational risks.

D.ensure that all unmitigated risks are accepted by management.

Question 643

Which of the following is the BEST method to ensure that data owners take responsibility for implementing information security processes?

A.Include security tasks into employee job descriptions

B.Increase security awareness training

C.Provide job rotation into the security organization.

D.Include membership on project teams

Question 644

What is the BEST reason to keep information security policies separate from procedures?

A.To keep policy documents from becoming too large

B.To ensure policies receive the appropriate approvals

C.To keep policies from having to be changed too frequently

D.To ensure that individual documents do not contain conflicting information

Question 645

Which of the following BEST promotes stakeholder accountability in the management of information security risks?

A.Targeted security procedures

B.Establishment of information ownership

C.Establishment of security baselines

D.Regular reviews for noncompliance

Other Version: 8722ISACA.CISM.v2025-02-21.q785; 1775ISACA.CISM.v2024-12-21.q371; 14204ISACA.CISM.v2022-06-26.q752; 83ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 277PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 385Nokia.4A0-113.v2026-05-01.q69; 421EC-COUNCIL.312-49v11.v2026-04-30.q214; 338Microsoft.MB-820.v2026-04-30.q101; 262Salesforce.MC-202.v2026-04-30.q57; 306BICSI.INSTC_V8.v2026-04-29.q53; 432NMLS.MLO.v2026-04-28.q82; 291NCARB.Project-Management.v2026-04-28.q27; 521EMC.D-AV-DY-23.v2026-04-27.q184; 1357ServiceNow.CSA.v2026-04-27.q483

Question 641

Question 642

Question 643

Question 644

Question 645

Download PDF File