Isaca CISM Exam Question and Updated Info

Welcome to ExamTopics Pro

- Expert Verified, Online, Free.

MAIL US

info@examtopicspro.com

Isaca CISM Exam Questions

$ 39

Description

Exam Name: Certified Information Security Manager

Exam Code: CISM

Related Certification(s): Isaca Certified Information Security Manager Certified Information Security Manager Certification

Certification Provider: Isaca

Actual Exam Duration: 120 Minutes

Number of CISM practice questions in our database: 801 (updated: Jan. 12, 2025)

Expected CISM Exam Topics, as suggested by Isaca :

Module 1: Information Security Management/ Identity Management
Module 2: Information Network Security Management Expectaions
Module 3: Information Security Governance
Module 4: InformationRisk Management
Module 5: Information Security Program
Module 6: Development and Management
Module 7: Information Security Incident Management

Description
Reviews (0)

Description

Exam Name: Certified Information Security Manager

Exam Code: CISM

Related Certification(s): Isaca Certified Information Security Manager Certified Information Security Manager Certification

Certification Provider: Isaca

Actual Exam Duration: 120 Minutes

Number of CISM practice questions in our database: 801 (updated: Jan. 12, 2025)

Expected CISM Exam Topics, as suggested by Isaca :

Module 1: Information Security Management/ Identity Management
Module 2: Information Network Security Management Expectaions
Module 3: Information Security Governance
Module 4: InformationRisk Management
Module 5: Information Security Program
Module 6: Development and Management
Module 7: Information Security Incident Management

Reviews

There are no reviews yet.

Be the first to review “Isaca CISM Exam Questions”

Q1. Which of the following is the BEST indication of an effective information security program?

A.Risk is treated to an acceptable level.

B. The number of security incidents reported by staff has increased.

C. Key risk indicators (KRIs) are established.

D. Policies are reviewed and approved by senior management.

Answer

Correct Answer: A

Q2. An information security manager has learned of an increasing trend in attacks that use phishing emails impersonating an organization's CEO in an attempt to commit wire transfer fraud. Which of the following is the BEST way to reduce the risk associated with this type of attack?

A.Temporarily suspend wire transfers for the organization.

B. Provide awareness training to the CEO for this type of phishing attack.

C. Provide awareness training to staff responsible for wire transfers.

D. Disable emails for staff responsible for wire transfers.

Answer

Correct Answer: C

Q3. When analyzing the emerging risk and threat landscape, an information security manager should FIRST:

A.determine the impact if threats materialize.

B. determine the sources of emerging threats.

C. review historical threats within the industry.

D. map threats to business assets.

Answer

Correct Answer: B

Q4. Which of the following is the BEST indication of an effective disaster recovery planning process?

A.Hot sites are required for any declared disaster.

B. Chain of custody is maintained throughout the disaster recovery process.

C. Post-incident reviews are conducted after each event.

D. Recovery time objectives (RTOs) are shorter than recovery point objectives (RPOs).

Answer

Correct Answer: C

Answer

$ 39

Frequently Asked Questions

What is ExamTopics Pro?

ExamTopics Pro is a premium service offering a comprehensive collection of exam questions and answers for over 1000 certification exams. It is regularly updated and designed to help users pass their certification exams confidently.

My credit card is not accepted, I'm not able to purchase subscription. What should I do?

Please contact team@examtopics.com and we will provide you with alternative payment options.

How can I renew my subscription?

The subscriptions at Examtopics.com are recurring according to the Billing Cycle of your Subscription Plan, i.e. after a certain period of time your credit card is re-billed automatically until/unless you cancel your subscription.

How long will I receive updates for the exams that I purchased?

Free updates are available for the duration of your subscription, after the subscription is expired, your access will no longer be available.

Get IT Certification

Unlock free, top-quality video courses on ExamTopicspro with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopicspro!

We are the biggest and most updated IT certification exam material website.

Using our own resources, we strive to strengthen the IT professionals community for free.

- Expert Verified, Online, Free.

MAIL US

Isaca CISM Exam Questions

Certification Exams

Downloadable PDF versions

100% Confidential

Updated Regularly

Advanced Features

Number Of Questions

Description

Description

Reviews

Q1. Which of the following is the BEST indication of an effective information security program?

A.Risk is treated to an acceptable level.

B. The number of security incidents reported by staff has increased.

C. Key risk indicators (KRIs) are established.

D. Policies are reviewed and approved by senior management.

Q2. An information security manager has learned of an increasing trend in attacks that use phishing emails impersonating an organization's CEO in an attempt to commit wire transfer fraud. Which of the following is the BEST way to reduce the risk associated with this type of attack?

A.Temporarily suspend wire transfers for the organization.

B. Provide awareness training to the CEO for this type of phishing attack.

C. Provide awareness training to staff responsible for wire transfers.

D. Disable emails for staff responsible for wire transfers.

Q3. When analyzing the emerging risk and threat landscape, an information security manager should FIRST:

A.determine the impact if threats materialize.

B. determine the sources of emerging threats.

C. review historical threats within the industry.

D. map threats to business assets.

Q4. Which of the following is the BEST indication of an effective disaster recovery planning process?

A.Hot sites are required for any declared disaster.

B. Chain of custody is maintained throughout the disaster recovery process.

C. Post-incident reviews are conducted after each event.

D. Recovery time objectives (RTOs) are shorter than recovery point objectives (RPOs).

Frequently Asked Questions

Get IT Certification

Social Media

Email Address

SiteMAP

Recent Articles