Scribd
Upload
231 views

CISM Questions

The document contains 5 multiple choice questions from the CISM exam. The questions cover topics such as the main benefit of implementing a DLP solution, which phase an incident response team should document actions to remove threats, what is primarily determined by asset classification, the first action a CISO should take if a third party provider did not notify of a data breach, and what an incident response plan must include.

Uploaded by

Ved Kapsime
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
231 views

CISM Questions

The document contains 5 multiple choice questions from the CISM exam. The questions cover topics such as the main benefit of implementing a DLP solution, which phase an incident response team should document actions to remove threats, what is primarily determined by asset classification, the first action a CISO should take if a third party provider did not notify of a data breach, and what an incident response plan must include.

Uploaded by

Ved Kapsime
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 3

Isaca

CISM Exam
Certified Information Security Manager
Questions & Answers
Demo
Questions & Answers PDF Page 2

Version: 33.0

Question: 1

The MAIN benefit of implementing a data loss prevention (DLP) solution is to:

A. enhance the organization's antivirus controls.


B. eliminate the risk of data loss.
C. complement the organization's detective controls.
D. reduce the need for a security awareness program.

Answer: B

Question: 2

During which of the following phases should an incident response team document actions required to
remove the threat that caused the incident?

A. Post-incident review
B. Eradication
C. Containment
D. Identification

Answer: B

Question: 3

Which of the following is PRIMARILY determined by asset classification?

A. Insurance coverage required for assets


B. Level of protection required for assets
C. Priority for asset replacement
D. Replacement cost of assets

Answer: B

Question: 4

ACISO learns that a third-party service provider did not notify the organization of a data breach that
affected the service provider's data center. Which of the following should the CISO do FIRST?
Questions & Answers PDF Page 3

A. Recommend canceling the outsourcing contract.


B. Request an independent review of the provider's data center.
C. Notify affected customers of the data breach.
D. Determine the extent of the impact to the organization.

Answer: D

Question: 5

An information security manager developing an incident response plan MUST ensure it includes:

A. an inventory of critical data.


B. criteria for escalation.
C. a business impact analysis (BIA).
D. critical infrastructure diagrams.

Answer: B

You might also like