nerdexam
ExamsCISMQuestions#135
IsacaIsaca

CISM · Question #135

CISM Question #135: Real Exam Question with Answer & Explanation

The correct answer is A: standardized security controls.. A primary benefit of adopting an information security framework is that it provides standardized security controls, offering a structured approach to managing information security risks.

Submitted by diego_uy· Apr 18, 2026Information Security Governance

Question

A PRIMARY benefit of adopting an information security framework is that it provides:

Options

  • Astandardized security controls.
  • Bcommon exploitability indices.
  • Ccredible emerging threat intelligence.
  • Dsecurity and vulnerability reporting guidelines.

Explanation

A primary benefit of adopting an information security framework is that it provides standardized security controls, offering a structured approach to managing information security risks.

Common mistakes.

  • B. Common exploitability indices are related to vulnerability assessment and penetration testing, not a primary benefit of a security framework.
  • C. Credible emerging threat intelligence is typically provided by specialized intelligence services, not directly by adopting a security framework.
  • D. While a framework might influence reporting, its primary benefit is not defining specific reporting guidelines but rather establishing the controls themselves.

Concept tested. Benefits of security frameworks

Topics

#Information Security Frameworks#Security Controls#Standardization#Security Governance

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CISM PracticeBrowse All CISM Questions