Free Access ISACA.CISM.v2024-12-21.q371 Practice Test (Page 48)

Question 231

What is the BEST way to ensure users comply with organizational security requirements for password complexity?

A.Include password construction requirements in the security standards

B.Require each user to acknowledge the password requirements

C.Implement strict penalties for user noncompliance

D.Enable system-enforced password configuration

Question 232

Which of the following is MOST important to consider when choosing a shared alternate location for computing facilities?

A.The organization's risk tolerance

B.Resource availability

C.The organization's mission

D.Incident response team training

Question 233

Who is MOST important to include when establishing the response process for a significant security breach that would impact the IT infrastructure and cause customer data toss?

A.A forensics expert for evidence management

B.A damage assessment expert for calculating losses

C.A penetration tester to validate the attack

D.An independent auditor for identification of control deficiencies

Question 234

Which of the following is MOST important for an information security manager to verify before conducting full-functional continuity testing?

A.Risk acceptance by the business has been documented

B.Teams and individuals responsible for recovery have been identified

C.Copies of recovery and incident response plans are kept offsite

D.Incident response and recovery plans are documented in simple language

Question 235

Which of the following is the MOST important information to include in a strategic plan for information security?

A.Information security staffing requirements

B.Current state and desired future state

C.IT capital investment requirements

D.information security mission statement

Other Version: 8710ISACA.CISM.v2025-02-21.q785; 14199ISACA.CISM.v2022-06-26.q752; 17261ISACA.CISM.v2022-03-24.q890; 83ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 261PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 374Nokia.4A0-113.v2026-05-01.q69; 407EC-COUNCIL.312-49v11.v2026-04-30.q214; 326Microsoft.MB-820.v2026-04-30.q101; 254Salesforce.MC-202.v2026-04-30.q57; 300BICSI.INSTC_V8.v2026-04-29.q53; 427NMLS.MLO.v2026-04-28.q82; 285NCARB.Project-Management.v2026-04-28.q27; 505EMC.D-AV-DY-23.v2026-04-27.q184; 1334ServiceNow.CSA.v2026-04-27.q483

Question 231

Question 232

Question 233

Question 234

Question 235

Download PDF File