Certified Information Security Manager (CISM) Free Practice Exam Questions

1249 real Certified Information Security Manager (CISM) exam questions with answers and AI explanations. ISACA certification prep — page 85 of 125.

  1. Question 841: Which of the following is the BEST defense-in-depth implementation for protecting high value assets or for handling environments that have trust concerns?
  2. Question 842: For which of the following is it MOST important that system administrators be restricted to read-only access?
  3. Question 843: When selecting metrics to monitor the effectiveness of an information security program, it is MOST important for an information security manager to:
  4. Question 844: After a risk has been identified, analyzed, and evaluated, which of the following should be done NEXT?
  5. Question 845: Which of the following should an information security manager do FIRST when creating an organization's disaster recovery plan (DRP)?
  6. Question 846: An organization is in the process of creating an agreement with a cloud provider. Who should determine the third party's destruction schedule for the organizat…
  7. Question 847: An investigation of a recent security incident determined that the root cause was negligent handling of incident alerts by system administrators. What is the B…
  8. Question 848: An organization is the victim or a targeted attack and is unaware of the compromise until a security analyst notices an additional user account on the firewall…
  9. Question 849: Of the following, who is accountable for data loss in the event of an information security incident at a third-party provider?
  10. Question 850: Which of the following would BEST guide the development and maintenance of an information security program?