Free Access ISACA.CISM.v2022-03-24.q890 Practice Test (Page 98)

Question 481

To BEST improve the alignment of the information security objectives in an organization, the chief information security officer (CISO) should:

A.revise the information security program.

B.evaluate a balanced business scorecard.

C.conduct regular user awareness sessions.

D.perform penetration tests.

Question 482

In an organization that has undergone an expansion through an acquisition which of the following would BEST secure the enterprise network?

A.Using security groups

B.Log analysis od system access

C.Business or role-based segmentation

D.Encryption of data traversing networks

Question 483

It is suspected that key emails have been viewed by unauthorized parties The email administrator conducted an investigation but it has not returned any information relating to the incident, and leaks are continuing. Which of the following is the BEST recommended course of action to senior management?

A.Arrange for an independent review.

B.Commence security training for staff at the organization.

C.Rebuild the email application

D.Restrict the distribution of confidential emails.

Question 484

Information security policy enforcement is the responsibility of the:

A.security steering committee.

B.chief information officer (CIO).

C.chief information security officer (CISO).

D.chief compliance officer (CCO).

Question 485

A risk has been formally accepted and documented.
Which of the following is the MOST important action for an information security manager?

A.Update risk tolerance levels.

B.Notify senior management and the board.

C.Monitor the environment for changes.

D.Re-evaluate the organization's risk appetite.

Other Version: 1113ISACA.CISM.v2025-02-21.q785; 659ISACA.CISM.v2024-12-21.q371; 12811ISACA.CISM.v2022-06-26.q752; 79ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 111Oracle.1z0-1196-25.v2025-09-12.q18; 110NetworkAppliance.NS0-162.v2025-09-12.q86; 151OCEG.GRCP.v2025-09-11.q211; 110HP.HPE0-V27.v2025-09-11.q78; 126Oracle.1Z0-1057-23.v2025-09-10.q47; 169Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 140SAP.C-S4EWM-2023.v2025-09-08.q83; 186TheSecOpsGroup.CNSP.v2025-09-08.q20; 283CFAInstitute.ESG-Investing.v2025-09-08.q173; 279PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132

Question 481

Question 482

Question 483

Question 484

Question 485

Download PDF File