Free Access ISACA.CISM.v2022-06-26.q752 Practice Test (Page 36)

Question 171

Which of the following is the MOST important consideration when determining the approach for gaining organization-wide acceptance of an information security plan?

A.Organizational information security awareness

B.Mature security policy

C.Organizational culture

D.Information security roles and responsibilities

Question 172

In assessing risk, it is MOST essential to:

A.provide equal coverage for all asset types.

B.use benchmarking data from similar organizations.

C.consider both monetary value and likelihood of loss.

D.focus primarily on threats and recent business losses.

Question 173

Which of the following practices is BEST to remove system access for contractors and other temporary users when it is no longer required?

A.Log all account usage and send it to their manager

B.Establish predetermined automatic expiration dates

C.Require managers to e-mail security when the user leaves

D.Ensure each individual has signed a security acknowledgement

Question 174

The BEST method for detecting and monitoring a hacker's activities without exposing information assets to unnecessary risk is to utilize:

A.firewalls.

B.bastion hosts.

C.decoy files.

D.screened subnets.

Question 175

Which of the following is the PRIMARY reason an information security strategy should be deployed across an organization?

A.To ensure that management's intent is reflected in security activities

B.To ensure that the business complies with security regulations

C.To ensure that employees adhere to security standards

D.To ensure that security-related industry best practices are adopted

Other Version: 1068ISACA.CISM.v2025-02-21.q785; 630ISACA.CISM.v2024-12-21.q371; 15513ISACA.CISM.v2022-03-24.q890; 79ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 106OCEG.GRCP.v2025-09-11.q211; 106HP.HPE0-V27.v2025-09-11.q78; 122Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 136SAP.C-S4EWM-2023.v2025-09-08.q83; 172TheSecOpsGroup.CNSP.v2025-09-08.q20; 239CFAInstitute.ESG-Investing.v2025-09-08.q173; 225PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 157Salesforce.Data-Architect.v2025-09-05.q216; 152Adobe.AD0-E605.v2025-09-05.q50

Question 171

Question 172

Question 173

Question 174

Question 175

Download PDF File