ISACA Certified Information Security Manager (CISM) Prep exam study guide with complete solutions
3 views 0 purchase
Course
Certified Information Systems Auditor 2024:
Institution
Certified Information Systems Auditor 2024:
Which of the following is the primary step in control implementation for a new business application?
D. Risk assessment
When implementing an information security program, in which phase of the implementation should metrics be established to assess the effectiveness of the program over time?...
ISACA Certified Information Security Manager (CISM) Prep exam study guide with
complete solutions
Which of the following is the primary step in control implementation for a new business application? - answer D. Risk assessment
When implementing an information security program, in which phase of the implementation should metrics be established to assess the effectiveness of the program over time?" - answer C. Design
Data owners are concerned and responsible for who has access to their resources and therefore need to be concerned with the strategy of how to mitigate risk of data resource usage. Which of the following actions facilitates that responsibility? - answer B. Entitlement changes
Which of the following is the best method to determine the effectiveness of the incident response process? - answer C. Post-incident review
When properly implemented, a risk management program should be designed to reduce an organization's risk to: - answer C. A level at which the
organization is willing to accept What controls the process of introducing changes to systems to ensure that unintended changes are not introduced? - answer C. Change management
All actions dealing with incidents must be worked with cyclical consideration.
What is the primary post-incident review takeaway? - answer D. Derive ways
to improve the response process
If a forensics copy of a hard drive is required for legal matters, which of the following options provide the best solid defense for preservation of evidence?
- answer C. A bit-by-bit copy of all data
What is the preferred step an ISM should take to ensure the disaster recovery
plan is adequate and remains current? - answer A. Quarterly reviews of recovery plan information
Which of the following would prove to be the best protection and recovery procedures if an intruder has gained root access to a system?
A. Unplug the device from the network for isolationB. Use system recovery to
restore the last known good imageC. Rebuild the system and its OS and applications using the original vendor mediaD. Have all users change passwords - answer Either
A. Use system recovery to restore the last known good image
D. Have all users change passwords
As the increased use of regulation and compliance in the Information Security arena expands, information security managers must work to put tasks into perspective. T o do this, ISMs should involve affected organizations and view "regulations" as a? - answer A. Risk
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller GUARANTEEDSUCCESS. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $15.49. You're not tied to anything after your purchase.
