Free Access ISACA.CISM.v2024-12-21.q371 Practice Test (Page 24)

Question 111

Which of the following BEST ensures that modifications made to in-house developed business applications do not introduce new security exposures?

A.Stress testing

B.Patch management

C.Change management

D.Security baselines

Question 112

Senior management has decided to accept a significant risk within a security remediation plan.
Which of the following is the information security manager's BEST course of action?

A.Remediate the risk and document the rationale.

B.Update the risk register with the risk acceptance.

C.Communicate the remediation plan to the board of directors.

D.Report the risk acceptance to regulatory agencies.

Question 113

Which of the following guarantees that data in a file have not changed?

A.Inspecting the modified date of the file

B.Encrypting the file with symmetric encryption

C.Using stringent access control to prevent unauthorized access

D.Creating a hash of the file, then comparing the file hashes

Question 114

Which of the following presents the GREATEST challenge to the recovery of critical systems and data following a ransomware incident?

A.Lack of encryption for backup data in transit

B.Unavailable or corrupt data backups

C.Ineffective alert configurations for backup operations

D.Undefined or undocumented backup retention policies

Question 115

Who is MOST important to include when establishing the response process for a significant security breach that would impact the IT infrastructure and cause customer data loss?

A.A penetration tester to validate the attack

B.A forensics expert for evidence management

C.A damage assessment expert for calculating losses

D.An independent auditor for identification of control deficiencies

Other Version: 8745ISACA.CISM.v2025-02-21.q785; 14216ISACA.CISM.v2022-06-26.q752; 17401ISACA.CISM.v2022-03-24.q890; 83ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 282PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 412Nokia.4A0-113.v2026-05-01.q69; 439EC-COUNCIL.312-49v11.v2026-04-30.q214; 403Microsoft.MB-820.v2026-04-30.q101; 274Salesforce.MC-202.v2026-04-30.q57; 322BICSI.INSTC_V8.v2026-04-29.q53; 457NMLS.MLO.v2026-04-28.q82; 299NCARB.Project-Management.v2026-04-28.q27; 546EMC.D-AV-DY-23.v2026-04-27.q184; 1388ServiceNow.CSA.v2026-04-27.q483

Question 111

Question 112

Question 113

Question 114

Question 115

Download PDF File