Free Access ISACA.CISM.v2022-06-26.q752 Practice Test (Page 23)

Risk identification, analysis, and mitigation activities can BEST be integrated into business life cycle processes by linking them to:

A.compliance testing

B.configuration management

C.continuity planning

D.change management

What is the BEST method to verify that all security patches applied to servers were properly documented?

A.Trace change control requests to operating system (OS) patch logs

B.Trace OS patch logs to OS vendor's update documentation

C.Trace OS patch logs to change control requests

D.Review change control documentation for key servers

The PRIMARY objective of a risk management program is to:

A.minimize inherent risk.

B.eliminate business risk.

C.implement effective controls.

D.minimize residual risk.

Which of the following is the MOST important factor to ensure information security is meeting the organization's objectives?

A.Internal audit's involvement in the security process

B.Implementation of a control self-assessment process

C.Establishment of acceptable risk thresholds

D.Implementation of a security awareness program

The MAIN reason for an information security manager to monitor industry level changes in the business and IT is to:

A.change business objectives based on potential impact

B.evaluate the effect of the changes on the levels of residual risk.

C.update information security policies in accordance with the changes

D.identify changes in the risk environment

Other Version: 1042ISACA.CISM.v2025-02-21.q785; 619ISACA.CISM.v2024-12-21.q371; 15491ISACA.CISM.v2022-03-24.q890; 79ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 151Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 165TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 173PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 151Salesforce.Data-Architect.v2025-09-05.q216; 147Adobe.AD0-E605.v2025-09-05.q50

Download PDF File