ISACA-CISM

A security incident has been reported within an organization. When should an information security manager contact the information owner?

An incident management team leader sends out a notification that the organization has successfully recovered from a cyberattack. Which of the following should be done NEXT?

Which of the following defines the MOST comprehensive set of security requirements for a newly developed information system?

Which of the following information security practices would BEST prevent a SQL injection attack?

Which of the following is a viable containment strategy for a distributed denial of service (DDoS) attack?

Which of the following provides the MOST assurance that a third-party hosting provider will be able to meet availability requirements?

An organization permits the storage and use of its critical and sensitive information on employee-owned smartphones. Which of the following is the BEST security control?

A spear phishing attack was used to trick a user into installing a Trojan onto a workstation. Which of the following would have been MOST effective in preventing this attack from succeeding?

Which of the following is the MOST effective method of preventing deliberate internal security breaches?

An information security manager has been asked to provide regular status reports to senior management regarding the information security program. Which of the following would provide the MOST helpful information?

The PRIMARY purpose of a penetration test is to:

An information security policy was amended recently to support an organization's new information security strategy. Which of the following should be the information security manager's NEXT step?

Which of the following needs to be established FIRST in order to categorize data properly?

Which of the following is the BEST course of action when confidential information is inadvertently disseminated outside the organization?

An organization is performing an annual review of its risk landscape. Which of the following anticipated changes will have the MOST significant impact on the information security strategy?

To optimize the implementation of information security governance in an organization, an information security manager should:

Which of the following is the PRIMARY responsibility of an information security manager in an organization that is implementing the use of company-owned mobile devices in its operations?

Which of the following should be the PRIMARY goal of information security?

Which of the following clauses would represent the MOST significant potential exposure if included in a contract with a third-party service provider?

Which of the following should be the PRIMARY basis for determining information security objectives?

Which of the following is MOST helpful for determining priorities when creating a long-term information security roadmap?

A KEY consideration in the use of quantitative risk analysis is that it:

Which of the following is MOST important when selecting an information security metric?

A situation where an organization has unpatched IT systems in violation of the patching policy should be treated as:

How does data discovery assist with data classification?

Which of the following will BEST facilitate timely and effective incident response?

Which of the following MOST effectively communicates the current risk profile to senior management after controls are applied?

Which of the following processes should be done NEXT after completing a business impact analysis (BIA)?

Which of the following has the GREATEST impact on efforts to improve an organization's security posture?

Which of the following is MOST important to include in an information security policy?