CISM Question #376: Real Exam Question with Answer & Explanation

Sign in or unlock CISM to reveal the answer and full explanation for question #376. The question stem and answer options stay visible for context.

Submitted by the_admin· Apr 18, 2026Information Security Program Development and Management

Question

An information security manager identifies deficiencies in the organization's vulnerability management program. Which of the following is the MOST important consideration when preparing to update the related processes?

Options

AIdentifying and updating any missing systems in the asset management tool.
BMandating vulnerability management training.
CDeveloping a new vulnerability management policy based on an industry-standard framework.
DEngaging key stakeholders for feedback.

Unlock CISM to see the answer

You've previewed enough free CISM questions. Unlock CISM for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock CISM - $49.99 / 30 days Sign in

Topics

#Vulnerability Management Program#Process Improvement#Stakeholder Engagement#Change Management

Full CISM Practice Browse All CISM Questions