Free Access ISACA.CISM.v2025-02-21.q785 Practice Test (Page 38)

A business impact analysis (BIA) should be periodically executed PRIMARILY to:

A.validate vulnerabilities on environmental changes.

B.analyze the importance of assets.

C.verify the effectiveness of controls

D.check compliance with regulations.

Which of the following is the MOST important risk associated with middleware in a client-server environment?

A.Server patching may be prevented

B.System backups may be incomplete

C.System integrity may be affected

D.End-user sessions may be hijacked

A security risk assessment exercise should be repeated at regular intervals because:

A.business threats are constantly changing.

B.omissions in earlier assessments can be addressed.

C.repetitive assessments allow various methodologies.

D.they help raise awareness on security in the business.

In a well-controlled environment, which of the following activities is MOST likely to lead to the introduction of weaknesses in security software?

A.Applying patches

B.Changing access rules

C.Upgrading hardware

D.Backing up files

The success of a computer forensic investigation depends on the concept of:

A.forensic chain

B.chain of attack.

C.chain of evidence.

D.evidence of attack.

Other Version: 642ISACA.CISM.v2024-12-21.q371; 12783ISACA.CISM.v2022-06-26.q752; 15528ISACA.CISM.v2022-03-24.q890; 79ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 106OCEG.GRCP.v2025-09-11.q211; 106HP.HPE0-V27.v2025-09-11.q78; 122Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 136SAP.C-S4EWM-2023.v2025-09-08.q83; 172TheSecOpsGroup.CNSP.v2025-09-08.q20; 240CFAInstitute.ESG-Investing.v2025-09-08.q173; 235PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 159Salesforce.Data-Architect.v2025-09-05.q216; 153Adobe.AD0-E605.v2025-09-05.q50

Download PDF File