Free Access ISACA.CISM.v2022-06-26.q752 Practice Test (Page 90)

Which of the following provides a sound basis for effective security change management?

A.Configuration management

B.Version management

C.Password management

D.Incident management

The PRIMARY reason for defining the information security roles and responsibilities of staff throughout an organization is to:

A.reinforce the need for training

B.increase corporate accountability

C.comply with security policy

D.enforce individual accountability

Which of the following has the GREATEST impact on efforts to improve an organization's security posture?

A.Well-documented security policies and procedures

B.Automation of security controls

C.Regular reporting to senior management

D.Supportive tone at the top regarding security

Which of the following BEST ensures that modifications made to in-house developed business applications do not introduce new security exposures?

A.Stress testing

B.Patch management

C.Change management

D.Security baselines

Which of the following would be helpful to reduce the amount of time needed by an incident response team to determine appropriate actions?

A.Rehearsing incident response procedures, roles, and responsibilities

B.Validating the incident response plan against industry best practices

C.Providing annual awareness training regarding incident response for team members

D.Defining incident severity levels during a business impact analysis (BIA)

Other Version: 1106ISACA.CISM.v2025-02-21.q785; 659ISACA.CISM.v2024-12-21.q371; 15544ISACA.CISM.v2022-03-24.q890; 79ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 108Oracle.1z0-1196-25.v2025-09-12.q18; 107NetworkAppliance.NS0-162.v2025-09-12.q86; 147OCEG.GRCP.v2025-09-11.q211; 108HP.HPE0-V27.v2025-09-11.q78; 124Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 138SAP.C-S4EWM-2023.v2025-09-08.q83; 183TheSecOpsGroup.CNSP.v2025-09-08.q20; 263CFAInstitute.ESG-Investing.v2025-09-08.q173; 251PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132

Download PDF File