Browse Exams Pricing

ExamsCISMQuestions

CISM Exam Questions

989 real CISM exam questions with expert-verified answers and explanations. Page 15 of 20.

Question #701Information Security Incident Management
Which of the following is the MOST important consideration when developing an approach to effectively contain security incidents?
Incident ContainmentIncident ResponseSystem IsolationSecurity Operations
Question #702Incident Management
Which of the following is MOST critical for incident classification?
Incident ClassificationIncident Management ProcessIncident Criteria
Question #703Information Security Governance
Which of the following is the PRIMARY reason to involve stakeholders from various business units when developing an information security policy?
Stakeholder InvolvementPolicy DevelopmentOrganizational AcceptanceGovernance Principles
Question #704Information Security Governance
Following an information security risk assessment of a critical system, several significant issues have been identified. Which of the following is MOST important for the informatio...
Risk reportingRisk ownershipSenior management communicationInformation security governance
Question #705Information Security Incident Management
A global organization is developing an incident response team. The organization wants to keep headquarters informed of all incidents and wants to be able to present a unified respo...
Incident Response TeamIncident Management StructureCentralizationUnified Response
Question #706Information Security Program Development and Management
An acceptable use policy would PRIMARILY address the integration of an emerging technology in the workplace by:
Acceptable Use Policy (AUP)Emerging TechnologyInformation Security PolicyUser Responsibility
Question #707Information Security Program Development and Management
Which of the following BEST protects against emerging advanced persistent threat (APT) actors?
APTProactive SecurityThreat DetectionSecurity Monitoring
Question #708Information Security Risk Management
A new privacy regulation includes significant financial penalties for breaches. Which of the following would BEST enable the information security manager to gain a better understan...
Business Impact AnalysisRegulatory ComplianceRisk AssessmentImpact Assessment
Question #709Information Security Governance
Which of the following is the PRIMARY objective of developing an information security strategy?
information security strategystrategic planningprogram directioncurrent-to-desired state transition
Question #710Information Security Incident Management
Which of the following is a viable containment strategy for a distributed denial of service (DDoS) attack?
DDoSContainmentIncident ResponseTraffic Redirection
Question #711Information Security Incident Management
An incident response team recently encountered an unfamiliar type of cyber event. Though the team was able to resolve the issue, it took a significant amount of time to identify. W...
Incident ResponsePost-incident ReviewLessons LearnedIncident Identification
Question #712Information Security Governance
Which of the following would BEST assist an information security manager in gaining strategic support from executive management?
Strategic SupportExecutive EngagementRisk AnalysisBusiness Alignment
Question #713Information Security Risk Management
A risk assessment of a custom application was performed during the design phase. After the application goes live, which of the following circumstances would MOST likely require a r...
Risk ReassessmentChange ManagementApplication RiskRisk Triggers
Question #714Information Security Incident Management
Which of the following is the BEST indicator of an effective incident management program?
Incident Management MetricsProgram EffectivenessIncident Response PerformanceSecurity Operations
Question #715Information Security Program Development and Management
What is the BEST way to address vulnerabilities associated with a recent increase in the number of zero-day attacks?
Zero-day attacksBehavioral anomaly detectionThreat detectionVulnerability mitigation
Question #716Information Security Incident Management
An information security manager is alerted to multiple security incidents across different business units, with unauthorized access to sensitive data and potential data exfiltratio...
Incident ClassificationIncident PrioritizationData Classification StandardsIncident Response Process
Question #717Information Security Program
Which of the following is the MOST effective way to protect the authenticity of data in transit?
Digital SignaturesData AuthenticityCryptographyData in Transit
Question #718Information Security Program Development and Management
Which type of policy BEST helps to ensure that all employees, contractors, and third-party users receive formal communication regarding an organization's security program?
Security Awareness TrainingInformation Security PoliciesSecurity Program Communication
Question #719Information Security Governance
Which of the following should be established FIRST when implementing an information security governance framework?
Information security governanceSecurity policiesFramework implementationFoundational elements
Question #720Information Security Incident Management
Which of the following is the BEST reason to include an incident classification scheme within an incident response plan?
Incident ClassificationIncident Response PlanPrioritizationIncident Management
Question #721Information Security Risk Management
An organization is close to going live with the implementation of a cloud-based application. Independent penetration test results have been received that show a high-rated vulnerab...
Risk assessmentRisk toleranceVulnerability managementSecurity decision making
Question #722Information Security Governance
When selecting metrics to monitor the effectiveness of an information security program, it is MOST important for an information security manager to:
Security MetricsBusiness AlignmentProgram EffectivenessStrategic Planning
Question #723Information Security Incident Management
Conducting log analysis falls into which phase of the incident management life cycle?
Incident DetectionLog AnalysisIncident Management Phases
Question #724Information Security Incident Management
An information security manager is updating the organization's incident response plan. Which of the following is the BEST way to validate that the process and procedures provided b...
Incident response planPlan validationTabletop exerciseIncident response testing
Question #725Information Security Program Development and Management
A backdoor has been identified that enabled a cyberattack on an organization's systems. Integrating which of the following into the software development life cycle would BEST enabl...
Secure SDLCVulnerability TestingApplication SecurityPreventive Controls
Question #726Information Security Program
The PRIMARY objective of an organization-wide information security awareness and training program is to:
Security AwarenessSecurity TrainingEmployee BehaviorInformation Security Program Objectives
Question #727Information Security Incident Management
Which of the following BEST enables an organization to determine what activities and changes have occurred on a system during a cybersecurity incident?
Digital ForensicsIncident InvestigationIncident ResponseCybersecurity Incident
Question #728Information Security Risk Management
An organization has discovered that a server processing real-time visual data could be vulnerable to a lateral movement stage in a ransomware attack. Which of the following control...
Lateral MovementRansomwareNetwork SegmentationMitigation Controls
Question #729Information Security Program Development and Management
A department has reported that a security control is no longer effective. Which of the following is the information security manager's BEST course of action?
Security control assessmentControl effectivenessInformation security managementControl failure response
Question #730Information Security Program Development and Management
An organization is developing an information security program. Which of the following will be MOST helpful in the early stages of this effort?
Information Security Program DevelopmentAsset ManagementFoundational ActivitiesEarly Stages
Question #731Information Security Governance
A global organization has outsourced security processes to a service provider by means of a global agreement. What is the MOST efficient approach to meet country-specific regulator...
Global ComplianceOutsourcing SecurityRegulatory RequirementsBinding Corporate Rules
Question #732Information Security Program Development and Management
Which of the following has the GREATEST impact on the effectiveness of an organization's security posture?
Security cultureOrganizational security effectivenessInformation security program managementSecurity awareness
Question #733Information Security Governance
Which of the following is the PRIMARY impact of organizational culture on the effectiveness of an information security program?
Organizational CultureInformation Security Program EffectivenessSecurity BehaviorHuman Factors in Security
Question #734Information Security Program Development and Management
Which of the following is the MOST important factor in successfully implementing Zero Trust?
Zero TrustAuthenticationAuthorizationSecurity Architecture
Question #735Information Security Incident Management
Which of the following is the MOST important objective of post-incident review activities?
Post-incident reviewContinuous improvementIncident responseLessons learned
Question #736Information Security Incident Management
Which of the following would BEST enable an organization to improve its incident management prioritization?
Incident PrioritizationBusiness Impact AnalysisSystem CriticalityBusiness Process Mapping
Question #737Information Security Governance
Which of the following is the MOST critical input to developing policies, standards, and procedures to secure information assets?
Information Security GovernancePolicy DevelopmentStrategic AlignmentBusiness Objectives
Question #738Information Security Incident Management
Which of the following activities occurs in the incident containment phase?
Incident ResponseContainment PhaseEvidence PreservationIncident Management
Question #739Information Security Governance
How does an organization's information security steering committee facilitate the achievement of information security program objectives?
Information Security GovernanceSteering CommitteeStrategic Decision MakingProgram Objectives
Question #740Information Security Risk Management
The PRIMARY purpose for conducting cybersecurity risk assessments is to:
Risk assessmentSecurity postureRisk management principles
Question #741Information Security Governance
The security team is developing a business case to submit to the IT steering committee for the implementation of a fraud detection system. Including which of the following would be...
Business CaseFinancial JustificationReturn on InvestmentIT Governance
Question #742Information Security Risk Management
Which of the following is MOST effective in monitoring an organization's existing risk?
Risk MonitoringRisk DashboardsRisk ReportingRisk Management Tools
Question #743Information Security Risk Management
Which of the following should be of GREATEST concern to an information security manager when evaluating a cloud service provider?
Cloud SecurityVendor Risk ManagementSecurity Controls EvaluationRisk Prioritization
Question #744Information Security Governance
Who should be responsible for determining the level of data classification required for an application related to a new line of business?
Data classificationRoles and responsibilitiesData ownershipInformation security governance
Question #745Incident Management
Which of the following is the BEST reason to use an offsite mirror site as part of an organization's disaster recovery strategy?
Disaster RecoveryOffsite Mirror SiteBusiness ContinuityRecovery Time Objective
Question #746Information Security Governance
An organization's quality management program can BEST support security management by providing:
Quality ManagementSecurity AssuranceInformation Security GovernanceRequirements Management
Question #747Information Security Risk Management
Which of the following should be the PRIMARY basis for the development of a business case to obtain support for an information security project?
Business Case DevelopmentInformation Security Project JustificationRisk ToleranceRisk Management
Question #748Information Security Risk Management
A global organization is considering its geopolitical security risks. Which of the following is the information security manager's BEST approach?
Geopolitical RiskEnterprise Risk ManagementLegal and Regulatory ComplianceRisk Strategy
Question #749Information Risk Management
Which of the following is the PRIMARY outcome of a business impact analysis (BIA)?
Business Impact AnalysisBIACritical Business FunctionsRecovery Prioritization
Question #750Information Security Governance
Which of the following is MOST important to the ongoing success of an information security program?
Executive sponsorshipInformation security governanceProgram sustainabilityStrategic alignment

PreviousPage 15 of 20Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.