Free Access ISACA.CISM.v2022-03-24.q890 Practice Test (Page 144)

Question 711

Which of the following would BEST help an information security manager prioritize remediation activities to meet regulatory requirements?

A.A capability maturity model matrix

B.Annual loss expectancy (ALE) of noncompliance

C.Cost of associated controls

D.Alignment with the IT strategy

Question 712

An organization rolled out information security awareness training and wants to perform an end-ot-year assessment to determine the program's success. Which of the following would be the BEST indicator of the program's effectiveness?

A.An increase in the number of security-related inquiries to the help desk

B.An increase in the number of employees completing training in a timely manner

C.An increase in the number of security incidents throughout the organization

D.An increase in the number of positive comments in trainee feedback surveys

Question 713

A security awareness program should:

A.present top management's perspective.

B.address details on specific exploits.

C.address specific groups and roles.

D.promote security department procedures.

Question 714

Which of the following would be the BEST way for a company 10 reduce the risk of data loss resulting from employee-owned devices accessing the corporate email system?

A.Use a mobile device management solution to isolate the local corporate email storage.

B.Require employees to undergo training before permitting access to the corporate email service

C.Link the bring-your-own-device (BYOD) policy to the existing staff disciplinary policy.

D.Require employees to install a reputable mobile anti-virus solution on their personal devices.

Question 715

Effective IT governance is BEST ensured by:

A.utilizing a bottom-up approach.

B.management by the IT department.

C.referring the matter to the organization's legal department.

D.utilizing a top-down approach.

Other Version: 1073ISACA.CISM.v2025-02-21.q785; 633ISACA.CISM.v2024-12-21.q371; 12774ISACA.CISM.v2022-06-26.q752; 79ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 106OCEG.GRCP.v2025-09-11.q211; 106HP.HPE0-V27.v2025-09-11.q78; 122Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 136SAP.C-S4EWM-2023.v2025-09-08.q83; 172TheSecOpsGroup.CNSP.v2025-09-08.q20; 239CFAInstitute.ESG-Investing.v2025-09-08.q173; 225PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 157Salesforce.Data-Architect.v2025-09-05.q216; 152Adobe.AD0-E605.v2025-09-05.q50

Question 711

Question 712

Question 713

Question 714

Question 715

Download PDF File