Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. BCS
  5. CISMP-V9

BCS CISMP-V9 Exam Questions
BCS Foundation Certificate in Information Security Management Principles V9.0 (Page 3 )

Updated On: 14-Mar-2026
Page 3 of 21
PDF with 100 Questions

Which of the following types of organisation could be considered the MOST at risk from the theft of electronic based credit card data?

  1. Online retailer.
  2. Traditional market trader.
  3. Mail delivery business.
  4. Agricultural producer.

Answer(s): A

Explanation:

Online retailers often collect and store large amounts of credit card data from their customers, making them a more attractive target for cybercriminals looking to steal such data. Traditional market traders, mail delivery businesses, and agricultural producers are typically less likely to collect and store large amounts of electronic credit card data and therefore may be less at risk for this type of cybercrime.



Which types of organisations are likely to be the target of DDoS attacks?

  1. Cloud service providers.
  2. Any financial sector organisations.
  3. Online retail based organisations.
  4. Any organisation with an online presence.

Answer(s): D



In a security governance framework, which of the following publications would be at the HIGHEST level?

  1. Procedures.
  2. Standards
  3. Policy.
  4. Guidelines

Answer(s): A



Which of the following is LEASTLIKELY to be the result of a global pandemic impacting on information security?

  1. A large increase in remote workers operating in insecure premises.
  2. Additional physical security requirements at data centres and corporate headquarters.
  3. Increased demand on service desks as users need additional tools such as VPNs.
  4. An upsurge in activity by attackers seeking vulnerabilities caused by operational changes.

Answer(s): C



In order to maintain the currency of risk countermeasures, how often SHOULD an organisation review these risks?

  1. Once defined, they do not need reviewing.
  2. A maximum of once every other month.
  3. When the next risk audit is due.
  4. Risks remain under constant review.

Answer(s): D



Viewing page 3 of 21
Viewing questions 11 - 15 out of 100 questions



Post your Comments and Discuss BCS CISMP-V9 exam dumps with other Community members:

CISMP-V9 Exam Discussions & Posts

AI Tutor 👋 I’m here to help!