CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. ISACA
  5. CISM

Free CISM Exam Braindumps (page: 42)

Page 42 of 430
PDF with 1716 Questions

The MOST important element in achieving executive commitment to an information security governance program is:

  1. a defined security framework
  2. identified business drivers
  3. established security strategies
  4. a process improvement model

Answer(s): B



After implementing an information security governance framework, which of the following would provide the
BEST information to develop an information security project plan?

  1. Risk heat map
  2. Recent audit results
  3. Balanced scorecard
  4. Gap analysis

Answer(s): C



An information security manager’s PRIMARY objective for presenting key risks to the board of directors is to:

  1. meet information security compliance requirements.
  2. ensure appropriate information security governance.
  3. quantity reputational risks.
  4. re-evaluate the risk appetite.

Answer(s): B



Which of the following is MOST helpful in integrating information security governance with corporate governance?

  1. Assigning the implementation of information security governance to the steering committee.
  2. Including information security processes within operational and management processes.
  3. Providing independent reports of information security efficiency and effectiveness to the board.
  4. Aligning the information security governance to a globally accepted framework.

Answer(s): B






Post your Comments and Discuss ISACA CISM exam with other Community members:

CISM Exam Discussions & Posts