Free Access ISACA.CISM.v2024-12-21.q371 Practice Test (Page 52)

Question 251

An organization with a strict need-to-know information access policy is about to launch a knowledge management intranet. Which of the following is the MOST important activity to ensure compliance with existing security policies?

A.Change organization policy to allow wider use of the new web site.

B.Develop a control procedure to check content before it is published.

C.Password-protect documents that contain confidential information.

D.Ensure that access to the web site is limited to senior managers and the board.

Question 252

Which of the following would be the BEST course of action to address a privileged user's unauthorized modifications to a security application?

A.Implement compensating controls to address the risk.

B.Enforce the security configuration and require the change to be reverted.

C.Update the applicable security configuration to accommodate the modification

D.Report the risk associated with the policy breach.

Question 253

Which of the following is the MOST important factor when designing information security architecture?

A.Technical platform interfaces

B.Scalability of the network

C.Development methodologies

D.Stakeholder requirements

Question 254

Which of the following is MOST important when developing a security strategy?

A.A well-defined security organization

B.Management direction on security

C.A risk-aware security culture

D.Sufficient resource allocation by management

Question 255

An information security manager has determined that the mean time to prioritize information security incidents has increased to an unacceptable level. Which of the following processes would BEST enable the information security manager to address this concern?

A.Forensic analysis

B.Incident response

C.Incident classification

D.Vulnerability assessment

Other Version: 8724ISACA.CISM.v2025-02-21.q785; 14204ISACA.CISM.v2022-06-26.q752; 17332ISACA.CISM.v2022-03-24.q890; 83ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 277PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 389Nokia.4A0-113.v2026-05-01.q69; 423EC-COUNCIL.312-49v11.v2026-04-30.q214; 341Microsoft.MB-820.v2026-04-30.q101; 262Salesforce.MC-202.v2026-04-30.q57; 306BICSI.INSTC_V8.v2026-04-29.q53; 433NMLS.MLO.v2026-04-28.q82; 291NCARB.Project-Management.v2026-04-28.q27; 521EMC.D-AV-DY-23.v2026-04-27.q184; 1359ServiceNow.CSA.v2026-04-27.q483

Question 251

Question 252

Question 253

Question 254

Question 255

Download PDF File