Free Access ISACA.CISM.v2024-12-21.q371 Practice Test (Page 38)

Question 181

In business-critical applications, user access should be approved by the:

A.information security manager.

B.data owner.

C.data custodian.

D.business management.

Question 182

To justify the need to invest in a forensic analysis tool, an information security manager should FIRST:

A.review the functionalities and implementation requirements of the solution.

B.review comparison reports of tool implementation in peer companies.

C.provide examples of situations where such a tool would be useful.

D.substantiate the investment in meeting organizational needs.

Question 183

A new organization has been hit with a ransomware attack that is critically impacting its business operations. The organization does not yet have a proper incident response plan, but it does have a backup procedure for restoration of dat a. Which of the following should be the FIRST course of action?

A.Establish an incident response plan.

B.Recommend that management pay the ransom.

C.Contact the legal department.

D.Isolate the affected system.

Question 184

A hacking group has posted an organization's employee data on social media. What should the information security manager do FIRST?

A.Initiate the incident response process.

B.Review system audit logs.

C.Inform the impacted employees.

D.Notify law enforcement.

Question 185

An organization permits the storage and use of its critical and sensitive information on employee-owned smartphones. Which of the following is the BEST security control?

A.Requiring the backup of the organization's data by the user

B.Monitoring how often the smartphone is used

C.Establishing the authority to remote wipe

D.Developing security awareness training

Other Version: 8724ISACA.CISM.v2025-02-21.q785; 14204ISACA.CISM.v2022-06-26.q752; 17332ISACA.CISM.v2022-03-24.q890; 83ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 277PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 389Nokia.4A0-113.v2026-05-01.q69; 423EC-COUNCIL.312-49v11.v2026-04-30.q214; 341Microsoft.MB-820.v2026-04-30.q101; 262Salesforce.MC-202.v2026-04-30.q57; 306BICSI.INSTC_V8.v2026-04-29.q53; 433NMLS.MLO.v2026-04-28.q82; 291NCARB.Project-Management.v2026-04-28.q27; 521EMC.D-AV-DY-23.v2026-04-27.q184; 1359ServiceNow.CSA.v2026-04-27.q483

Question 181

Question 182

Question 183

Question 184

Question 185

Download PDF File