CISM Question #335: Real Exam Question with Answer & Explanation

Sign in or unlock CISM to reveal the answer and full explanation for question #335. The question stem and answer options stay visible for context.

Submitted by miguelv· Apr 18, 2026Information Security Program Development and Management

Question

An organization is selecting security metrics to measure security performance, and a firewall specialist suggests tracking the number of external attacks blocked by the firewalls. Which of the following is the GREATEST concern with using this metric?

Options

AThe number of blocked external attacks is not representative of the true threat profile.
BThe number of blocked external attacks is an indicator of the organization's popularity.
CThe number of blocked external attacks over time does not explain the attackers' motivations.
DThe number of blocked external attacks will vary by month, causing inconsistent graphs.

Unlock CISM to see the answer

You've previewed enough free CISM questions. Unlock CISM for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock CISM - $49.99 / 30 days Sign in

Topics

#Security Metrics#Performance Measurement#Threat Profile#Risk Indicators

Full CISM Practice Browse All CISM Questions