Free Access ISACA.CISM.v2024-12-21.q371 Practice Test (Page 14)

Question 61

Which of the following would present the GREATEST need to revise information security policies?

A.A merger with a competing company

B.An increase in reported incidents

C.Implementation of a new firewall

D.Changes in standards and procedures

Question 62

What is the PRIMARY purpose of communicating business impact to an incident response team?

A.To provide monetary values for post-incident review

B.To provide information for communication of incidents

C.To enable effective prioritization of incidents

D.To facilitate resource allocation tor preventive measures

Question 63

An organization is conducting a post-incident review to determine the root cause of an information security incident. Which of the following situations would be MOST harmful to this investigation?

A.The incident response plan has not been updated during the past year.

B.Systems logs were cleared by the administrator to free up space on the affected systems.

C.Unencrypted logs of the affected systems were saved on magnetic tapes.

D.Antivirus signature update processes failed on the affected systems.

Question 64

Which of the following is the BEST approach to mitigate online brute-force attacks on user accounts?

A.Passwords stored in encrypted form

B.User awareness

C.Strong passwords that are changed periodically

D.Implementation of lock-out policies

Question 65

In an organization, information systems security is the responsibility of:

A.all personnel.

B.information systems personnel.

C.information systems security personnel.

D.functional personnel.

Other Version: 1073ISACA.CISM.v2025-02-21.q785; 12774ISACA.CISM.v2022-06-26.q752; 15521ISACA.CISM.v2022-03-24.q890; 79ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 106OCEG.GRCP.v2025-09-11.q211; 106HP.HPE0-V27.v2025-09-11.q78; 122Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 136SAP.C-S4EWM-2023.v2025-09-08.q83; 172TheSecOpsGroup.CNSP.v2025-09-08.q20; 239CFAInstitute.ESG-Investing.v2025-09-08.q173; 225PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 157Salesforce.Data-Architect.v2025-09-05.q216; 152Adobe.AD0-E605.v2025-09-05.q50

Question 61

Question 62

Question 63

Question 64

Question 65

Download PDF File