• Home
  • Articles
  • [Dec 12, 2021] Get New CISM Certification – Valid Exam Dumps Questions [Q589-Q608]

[Dec 12, 2021] Get New CISM Certification – Valid Exam Dumps Questions [Q589-Q608]

Share

[Dec 12, 2021] Get New CISM Certification – Valid Exam Dumps Questions

100% Passing Guarantee - Brilliant CISM Exam Questions PDF

NEW QUESTION 589
Which of the following vulnerabilities presents the GREATEST risk of external hackers gaining access to the corporate network?

  • A. Inadequate logging
  • B. Excessive administrative rights to an internal database
  • C. Missing patches on a workstation
  • D. Internal hosts running unnecessary services

Answer: B

Explanation:
Section: INFORMATION RISK MANAGEMENT

 

NEW QUESTION 590
When a new key business application goes into production, the PRIMARY reason to update relevant business impact analysis (BIA) and business continuity/disaster recovery plans is because:

  • A. this is a requirement of the security policy.
  • B. the asset inventory must be maintained.
  • C. service level agreements may not otherwise be met.
  • D. software licenses may expire in the future without warning.

Answer: C

Explanation:
Explanation/Reference:
Explanation:
The key requirement is to preserve availability of business operations. Choice A is a correct compliance requirement, but is not the main objective in this case. Choices B and C are supplementary requirements for business continuity/disaster recovery planning.

 

NEW QUESTION 591
Which of the following types of information would the information security manager expect to have the LOWEST level of security protection in a large, multinational enterprise?

  • A. Customer personal information
  • B. Strategic business plan
  • C. Previous financial results
  • D. Upcoming financial results

Answer: C

Explanation:
Section: INFORMATION RISK MANAGEMENT
Explanation:
Previous financial results are public; all of the other choices are private information and should only be accessed by authorized entities.

 

NEW QUESTION 592
The FIRST step in an incident response plan is to:

  • A. develop response strategies for systematic attacks.
  • B. validate the incident.
  • C. notify- the appropriate individuals.
  • D. contain the effects of the incident to limit damage.

Answer: B

Explanation:
Appropriate people need to be notified; however, one must first validate the incident. Containing the effects of the incident would be completed after validating the incident. Developing response strategies for systematic attacks should have already been developed prior to the occurrence of an incident.

 

NEW QUESTION 593
Which of the following would help to change an organization's security culture?

  • A. Obtain strong management support
  • B. Implement strict technical security controls
  • C. Develop procedures to enforce the information security policy
  • D. Periodically audit compliance with the information security policy

Answer: A

Explanation:
Section: INFORMATION SECURITY GOVERNANCE
Explanation:
Management support and pressure will help to change an organization's culture. Procedures will support an information security policy, but cannot change the culture of the organization. Technical controls will provide more security to an information system and staff; however, this does not mean the culture will be changed.
Auditing will help to ensure the effectiveness of the information security policy; however, auditing is not effective in changing the culture of the company.

 

NEW QUESTION 594
Which of the following is a PRIMARY responsibility of the information security governance function?

  • A. Advising senior management on optimal levels of risk appetite and tolerance
  • B. Ensuring adequate support for solutions using emerging technologies
  • C. Fostering a risk-aware culture to strengthen the information security program
  • D. Defining security strategies to support organizational programs

Answer: D

Explanation:
Section: INFORMATION SECURITY GOVERNANCE
Explanation

 

NEW QUESTION 595
Which of the following roles would represent a conflict of interest for an information security manager?

  • A. Assessment of the adequacy of disaster recovery plans
  • B. Monitoring adherence to physical security controls
  • C. Evaluation of third parties requesting connectivity
  • D. Final approval of information security policies

Answer: D

Explanation:
Since management is ultimately responsible for information security, it should approve information security policy statements; the information security manager should not have final approval. Evaluation of third parties requesting access, assessment of disaster recovery plans and monitoring of compliance with physical security controls are acceptable practices and do not present any conflicts of interest.

 

NEW QUESTION 596
Acceptable levels of information security risk should be determined by:

  • A. legal counsel.
  • B. die steering committee.
  • C. security management.
  • D. external auditors.

Answer: B

Explanation:
Senior management, represented in the steering committee, has ultimate responsibility for determining what levels of risk the organization is willing to assume. Legal counsel, the external auditors and security management are not in a position to make such a decision.

 

NEW QUESTION 597
Prior to having a third party perform an attack and penetration test against an organization, the MOST important action is to ensure that:

  • A. special backups of production servers are taken.
  • B. the technical staff has been briefed on what to expect.
  • C. the third party provides a demonstration on a test system.
  • D. goals and objectives are clearly defined.

Answer: D

Explanation:
Section: INFORMATION SECURITY PROGRAM MANAGEMENT
Explanation:
The most important action is to clearly define the goals and objectives of the test. Assuming that adequate backup procedures are in place, special backups should not be necessary. Technical staff should not be briefed nor should there be a demo as this will reduce the spontaneity of the test.

 

NEW QUESTION 598
Which of the following is the BEST approach to mitigate online brute-force attacks on user accounts?

  • A. User awareness
  • B. Passwords stored in encrypted form
  • C. Implementation of lock-out policies
  • D. Strong passwords that are changed periodically

Answer: C

Explanation:
Explanation
Implementation of account lock-out policies significantly inhibits brute-force attacks. In cases where this is not possible, strong passwords that are changed periodically would be an appropriate choice. Passwords stored in encrypted form will not defeat an online brute-force attack if the password itself is easily guessed. User awareness would help but is not the best approach of the options given.

 

NEW QUESTION 599
Senior management has approved employees working off-site by using a virtual private network (VPN) connection. It is MOST important for the information security manager to periodically:

  • A. review the security policy
  • B. perform a risk assessment
  • C. review firewall configuration
  • D. perform a cost-benefit analysis

Answer: A

Explanation:
Section: INFORMATION SECURITY PROGRAM MANAGEMENT

 

NEW QUESTION 600
Which of the following is the MOST appropriate position to sponsor the design and implementation of a new security infrastructure in a large global enterprise?

  • A. Chief security officer (CSO)
  • B. Chief legal counsel (CLC)
  • C. Chief privacy officer (CPO)
  • D. Chief operating officer (COO)

Answer: D

Explanation:
Explanation
The chief operating officer (COO) is most knowledgeable of business operations and objectives. The chief privacy officer (CPO) and the chief legal counsel (CLC) may not have the knowledge of the day- to-day business operations to ensure proper guidance, although they have the same influence within the organization as the COO. Although the chief security officer (CSO) is knowledgeable of what is needed, the sponsor for this task should be someone with far-reaching influence across the organization.

 

NEW QUESTION 601
Which of the following will BEST ensure that possible security incidents are correctly distinguished from typical help desk requests?

  • A. Updating the help desk manual
  • B. Periodic training of help desk personnel
  • C. Establishing a security incident hotline
  • D. Reviewing the help desk log

Answer: B

 

NEW QUESTION 602
Which of the following is the MOST likely outcome of a well-designed information security awareness course?

  • A. Decrease in the number of password resets
  • B. Increased reporting of security incidents to the incident response function
  • C. Increase in the number of identified system vulnerabilities
  • D. Decreased reporting of security incidents to the incident response function

Answer: B

Explanation:
A well-organized information security awareness course informs all employees of existing security policies, the importance of following safe practices for data security anil the need to report any possible security incidents to the appropriate individuals in the organization. The other choices would not be the likely outcomes.

 

NEW QUESTION 603
An operating system (OS) noncritical patch to enhance system security cannot be applied because a critical application is not compatible with the change. Which of the following is the BEST solution?

  • A. Rewrite the application to conform to the upgraded operating system
  • B. Alter the patch to allow the application to run in a privileged state
  • C. Compensate for not installing the patch with mitigating controls
  • D. Run the application on a test platform; tune production to allow patch and application

Answer: C

Explanation:
Since the operating system (OS) patch will adversely impact a critical application, a mitigating control should be identified that will provide an equivalent level of security . Since the application is critical, the patch should not be applied without regard for the application; business requirements must be considered. Altering the OS patch to allow the application to run in a privileged state may create new security weaknesses. Finally, running a production application on a test platform is not an acceptable alternative since it will mean running a critical production application on a platform not subject to the same level of security controls.

 

NEW QUESTION 604
Which of the following should be PRIMARILY included in a security training program for business process owners?

  • A. Application recovery time
  • B. Impact of security risks
  • C. Application vulnerabilities
  • D. List of security incidents reported

Answer: B

 

NEW QUESTION 605
The information security team has determined an additional security solution is needed to enhance the organization's security posture What should the information security manager do NEXT to move forward with this initiative?

  • A. Proceed with vendor selection.
  • B. Initiate vendor due-diligence.
  • C. Create a business case.
  • D. Evaluate available products.

Answer: C

 

NEW QUESTION 606
Which of the following is MOST important to the successful implementation of an information security governance framework across the organization?

  • A. Security management processes aligned with security objectives
  • B. The existing organizational security culture
  • C. Security policies that adhere to industry best practices
  • D. Organizational security controls deployed in line with regulations

Answer: B

 

NEW QUESTION 607
Which of the following is the MOST reliable way to ensure network security incidents are identified as soon as possible?

  • A. Install stateful inspection firewalls.
  • B. Collect and correlate IT infrastructure event logs.
  • C. Train help desk staff to identify and prioritize security incidents.
  • D. Conduct workshops and training sessions with end users.

Answer: B

Explanation:
Section: INCIDENT MANAGEMENT AND RESPONSE

 

NEW QUESTION 608
......


How to book the CISM Exam

These are following steps for registering the CISM exam. Step 1: Pass the CISM examination within the last five years Step 2: Candidate has a minimum of five years of professional Information Systems Security Manager work experience. Step3: Apply for CISA certification with $50 USD processing fee

For more detail visit this link Apply for certification

 

Free CISM braindumps download: https://www.actualtestsit.com/ISACA/CISM-exam-prep-dumps.html

CISM Dumps 2021 - NewISACA Exam Questions: https://drive.google.com/open?id=12dbFT21tXS7UB9qrzPCbl97IzDt5PPEp

Related Articles

more
ISACA CISM Certification Practice Exam