Free Access ISACA.CISM.v2024-12-21.q371 Practice Test (Page 30)

Question 141

What is the MAIN risk when there is no user management representation on the Information Security Steering Committee?

A.Functional requirements are not adequately considered.

B.User training programs may be inadequate.

C.Budgets allocated to business units are not appropriate.

D.Information security plans are not aligned with business requirements

Question 142

An IS manager has decided to implement a security system to monitor access to the Internet and prevent access to numerous sites. Immediately upon installation, employees Hood the IT helpdesk with complaints of being unable to perform business functions on Internet sites. This is an example of:

A.conflicting security controls with organizational needs.

B.strong protection of information resources.

C.implementing appropriate controls to reduce risk.

D.proving information security's protective abilities.

Question 143

An information security manager has identified numerous violations of security policy which prohibits text messaging from personal devices to conduct official business following is the MOST effective way to reduce the number of violations?

A.Provide awareness training to end users.

B.Implement a mobile device management (MDM) solution.

C.Require management approval for policy exceptions.

D.Report violations to senior management.

Question 144

During the initiation phase of the system development life cycle (SDLC) for a software project, information security activities should address:

A.security objectives.

B.cost-benefit analyses.

C.benchmarking security metrics.

D.baseline security controls.

Question 145

Which of the following should be the PRIMARY outcome of an information security program'?

A.Cost reduction

B.Threat reduction

C.Risk elimination

D.Strategic alignment

Other Version: 8705ISACA.CISM.v2025-02-21.q785; 14197ISACA.CISM.v2022-06-26.q752; 17256ISACA.CISM.v2022-03-24.q890; 83ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 257PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 366Nokia.4A0-113.v2026-05-01.q69; 402EC-COUNCIL.312-49v11.v2026-04-30.q214; 319Microsoft.MB-820.v2026-04-30.q101; 251Salesforce.MC-202.v2026-04-30.q57; 294BICSI.INSTC_V8.v2026-04-29.q53; 421NMLS.MLO.v2026-04-28.q82; 281NCARB.Project-Management.v2026-04-28.q27; 500EMC.D-AV-DY-23.v2026-04-27.q184; 1320ServiceNow.CSA.v2026-04-27.q483

Question 141

Question 142

Question 143

Question 144

Question 145

Download PDF File