Welcome to Scribd!

CISM Questions

Uploaded by

100% found this document useful (1 vote)

87 views3 pages

The document contains 5 multiple choice questions from the CISM exam. The questions cover topics such as the main benefit of implementing a DLP solution, which phase an incident response team should document actions to remove threats, what is primarily determined by asset classification, the first action a CISO should take if a third party provider did not notify of a data breach, and what an incident response plan must include.

Original Description:

Original Title

CISM-questions

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

100% found this document useful (1 vote)

87 views3 pages

CISM Questions

Uploaded by

Ved Kapsime

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

Jump to Page

You are on page 1of 3

Search inside document

Isaca

CISM Exam
Certified Information Security Manager
Questions & Answers
Demo
Questions & Answers PDF Page 2

Version: 33.0

Question: 1

The MAIN benefit of implementing a data loss prevention (DLP) solution is to:

A. enhance the organization's antivirus controls.

B. eliminate the risk of data loss.
C. complement the organization's detective controls.
D. reduce the need for a security awareness program.

Answer: B

Question: 2

During which of the following phases should an incident response team document actions required to
remove the threat that caused the incident?

A. Post-incident review
B. Eradication
C. Containment
D. Identification

Answer: B

Question: 3

Which of the following is PRIMARILY determined by asset classification?

A. Insurance coverage required for assets

B. Level of protection required for assets
C. Priority for asset replacement
D. Replacement cost of assets

Answer: B

Question: 4

ACISO learns that a third-party service provider did not notify the organization of a data breach that
affected the service provider's data center. Which of the following should the CISO do FIRST?
Questions & Answers PDF Page 3

A. Recommend canceling the outsourcing contract.

B. Request an independent review of the provider's data center.
C. Notify affected customers of the data breach.
D. Determine the extent of the impact to the organization.

Answer: D

Question: 5

An information security manager developing an incident response plan MUST ensure it includes:

A. an inventory of critical data.

B. criteria for escalation.
C. a business impact analysis (BIA).
D. critical infrastructure diagrams.

Answer: B

CIPT Questions Without Answer
Document102 pages
CIPT Questions Without Answer
Musa Odole Solomon
No ratings yet
CISSP SelfPaced MasterClass
Document20 pages
CISSP SelfPaced MasterClass
Ahmed Ali Khan
No ratings yet
C Ciso: Certified Chief Information Security Officer V3
Document10 pages
C Ciso: Certified Chief Information Security Officer V3
itachi uchiha
No ratings yet
CISM Certified Information Security Manager All-in-One Exam Guide - Peter Gregory
Document5 pages
CISM Certified Information Security Manager All-in-One Exam Guide - Peter Gregory
xasocihy
No ratings yet
Isaca Crisc: Exam Summary - Syllabus - Questions
Document9 pages
Isaca Crisc: Exam Summary - Syllabus - Questions
saima92patel
No ratings yet
Vendor Audit Questions
Document5 pages
Vendor Audit Questions
vantonilin
No ratings yet
CCISO A Complete Guide - 2020 Edition
From Everand
CCISO A Complete Guide - 2020 Edition
Gerardus Blokdyk
Rating: 1 out of 5 stars
1/5 (1)
QSA Main Student Study Guide 4.12
Document21 pages
QSA Main Student Study Guide 4.12
Jon Gordon
No ratings yet
Eccouncil: Ec-Council Certified Ciso (Cciso)
Document7 pages
Eccouncil: Ec-Council Certified Ciso (Cciso)
Dennis Theleso
No ratings yet
Dumpsfree: Dumpsfree Provide High-Quality Dumps Vce & Dumps Demo
Document8 pages
Dumpsfree: Dumpsfree Provide High-Quality Dumps Vce & Dumps Demo
Maya M
0% (1)
The Official (ISC)2 Guide to the CCSP CBK
From Everand
The Official (ISC)2 Guide to the CCSP CBK
Adam Gordon
No ratings yet
CCSP For Dummies: Book + 2 Practice Tests + 100 Flashcards Online
From Everand
CCSP For Dummies: Book + 2 Practice Tests + 100 Flashcards Online
Arthur J. Deane
No ratings yet
(ISC)2 CCSP Certified Cloud Security Professional Official Study Guide
From Everand
(ISC)2 CCSP Certified Cloud Security Professional Official Study Guide
Ben Malisow
No ratings yet
Information Security Auditor: Careers in information security
From Everand
Information Security Auditor: Careers in information security
Wendy Goucher
No ratings yet
CCISO Third Edition
From Everand
CCISO Third Edition
Gerardus Blokdyk
No ratings yet
CISM Certification Study Guide Part 2
Document41 pages
CISM Certification Study Guide Part 2
adeel ashraf
100% (1)
CISM DOMAIN 1 SLIDES - THOR TEACHES v1.0.1
Document78 pages
CISM DOMAIN 1 SLIDES - THOR TEACHES v1.0.1
Brk
No ratings yet
The CISA Prep Guide: Mastering the Certified Information Systems Auditor Exam
From Everand
The CISA Prep Guide: Mastering the Certified Information Systems Auditor Exam
John Kramer
No ratings yet
CCC Methodology and Mapping Annex en
Document36 pages
CCC Methodology and Mapping Annex en
Sk Islam
No ratings yet
CISM Acronyms
Document10 pages
CISM Acronyms
saieesha
No ratings yet
(CISM) Course 1
Document137 pages
(CISM) Course 1
GAL MOR
No ratings yet
CISA Exam Passing Principles: ISACA Series
Document9 pages
CISA Exam Passing Principles: ISACA Series
neeloufershaik
No ratings yet
CCISO Domain Self Assessment
Document7 pages
CCISO Domain Self Assessment
Alifia Fithritama
100% (2)
IAPP CERT Updates 091222
Document1 page
IAPP CERT Updates 091222
blackdogpk
No ratings yet
Qualified Security Assessor Complete Self-Assessment Guide
From Everand
Qualified Security Assessor Complete Self-Assessment Guide
Gerardus Blokdyk
No ratings yet
ISACA - Cybersecurity-Fundamentals-Certificate-Fact-Sheet - 0420
Document2 pages
ISACA - Cybersecurity-Fundamentals-Certificate-Fact-Sheet - 0420
Ac
No ratings yet
Recovering From An Event ID 1034 On A Server Cluster
Document5 pages
Recovering From An Event ID 1034 On A Server Cluster
yoursbala
No ratings yet
DoraTraining 1705318836
Document12 pages
DoraTraining 1705318836
nan cao
No ratings yet
EC-Council Certified Security Analyst Standard Requirements
From Everand
EC-Council Certified Security Analyst Standard Requirements
Gerardus Blokdyk
No ratings yet
CISA Practice Questions To Prep For The Exam - TechTarget
Document9 pages
CISA Practice Questions To Prep For The Exam - TechTarget
birish2009
No ratings yet
ISO 27001 and ISO 27002 Updates
Document12 pages
ISO 27001 and ISO 27002 Updates
surbi.2974
No ratings yet
Ccs K Study Guide
Document35 pages
Ccs K Study Guide
deals4kb
No ratings yet
NIST SP 800 53r4 Controls
Document385 pages
NIST SP 800 53r4 Controls
AJM
0% (1)
Essential 8
Document8 pages
Essential 8
Fahad Hasan
No ratings yet
CISM D2 Questions
Document7 pages
CISM D2 Questions
Jonathan Evans
No ratings yet
Sy0-701 6
Document30 pages
Sy0-701 6
AGBOOLA OLADIPO
No ratings yet
Security Enforcer Vs Enabler Report Draft 1-16-19
Document14 pages
Security Enforcer Vs Enabler Report Draft 1-16-19
Anonymous v8sB76r0v
No ratings yet
Domain 2
Document11 pages
Domain 2
Supun
No ratings yet
The CRISC Job Practice Areas Reflect The Vital and Evolving Responsibilities of IT Risk and IS Control Practitioners
Document3 pages
The CRISC Job Practice Areas Reflect The Vital and Evolving Responsibilities of IT Risk and IS Control Practitioners
AleAle
No ratings yet
Issap Mindmap
Document1 page
Issap Mindmap
deewanand
No ratings yet
CIPP A Authoritative Resource List 4.0
Document3 pages
CIPP A Authoritative Resource List 4.0
Anjali Bhaskar
No ratings yet
ISACA Fact Sheet
Document2 pages
ISACA Fact Sheet
SilviaHerrera
No ratings yet
YZA.A2 CISSP Practice Exam Security & Management Answers
Document15 pages
YZA.A2 CISSP Practice Exam Security & Management Answers
Chaz Franklin
No ratings yet
CISM Certified Information Security Manager Study Guide: Description
Document2 pages
CISM Certified Information Security Manager Study Guide: Description
Tiago Tadeu de Oliveira
0% (1)
ISF
Document22 pages
ISF
Luis Robles
No ratings yet
Information Security Foundation Based On ISO - IEC 27002
Document47 pages
Information Security Foundation Based On ISO - IEC 27002
Ajay
No ratings yet
DCSS en
Document36 pages
DCSS en
ashvar9
No ratings yet
Domain 1 Cisa
Document93 pages
Domain 1 Cisa
Rehana
No ratings yet
Manage Your Risk With ThreatModeler OWASP
Document39 pages
Manage Your Risk With ThreatModeler OWASP
Ivan Dario Sanchez Moreno
100% (1)
Domain 1
Document30 pages
Domain 1
Supun
0% (1)
Four Ciso Tribes and Where To Find Them: Gary Mcgraw, Ph.D. Sammy Migues Brian Chess, PH.D
Document24 pages
Four Ciso Tribes and Where To Find Them: Gary Mcgraw, Ph.D. Sammy Migues Brian Chess, PH.D
ocruz80
No ratings yet
Privacy Manager Certification: Examination Blueprint For The Certified Information Privacy Manager (CIPM)
Document1 page
Privacy Manager Certification: Examination Blueprint For The Certified Information Privacy Manager (CIPM)
roruang
No ratings yet
CISM Application
Document10 pages
CISM Application
sheikhshadab
0% (1)
Information Security Attestation Guide
Document2 pages
Information Security Attestation Guide
Pivot Point Security
100% (1)
CCSP Exam Outline English 20220511
Document14 pages
CCSP Exam Outline English 20220511
ironman
No ratings yet
Risk Assessment Instructions
Document70 pages
Risk Assessment Instructions
Fanny Ojeda
No ratings yet
CISM Implementation Guide
Document72 pages
CISM Implementation Guide
fabrice drogoul
No ratings yet
Cisa Exam Testing Concept Backup Schemes Fulldifferentialinc PDF
Document14 pages
Cisa Exam Testing Concept Backup Schemes Fulldifferentialinc PDF
afzhussain
No ratings yet
Application of CISM PDF
Document10 pages
Application of CISM PDF
edwardscpe
No ratings yet
Virtual CISO: What Is A Virtual CISO? (Chief Information Security Officer) Challenges Benefits
Document1 page
Virtual CISO: What Is A Virtual CISO? (Chief Information Security Officer) Challenges Benefits
fer
No ratings yet