CISM

Which of the following should cause the GREATEST concern for an information security manager reviewing the effectiveness of an intrusion prevention system (IDS)?

First post and replies  | Last post by Nathaniel, 3 months ago

Which of the following is the MOST important factor to consider when establishing a severity hierarchy for information security incidents?

First post and replies  | Last post by Lloyd, 3 months ago

Which of the following is the MOST important consideration when determining the approach for gaining organization-wide acceptance of an information security plan?

First post and replies  | Last post by Wilber, 3 months ago

Which of the following is the MOST important element of an effective external information security communication plan?

First post and replies  | Last post by Rolando, 3 months ago

Which of the following is the MOST effective way to mitigate this risk to the organization's critical systems?

First post and replies  | Last post by Wilber, 3 months ago

In this situation during which phase would integration be MOST effectrve?

First post and replies  | Last post by Thurman, 3 months ago

Which of the following should be an information security manager's PRIMARY focus during the development of a critical system storing highly confidential data?

First post and replies  | Last post by Gonzalo, 3 months ago

Risk reporting requirements should be PRIMARILY based on:

First post and replies  | Last post by Rashad, 3 months ago

An information security manager is implementing controls to protect the organization's data. The FIRST step in this process should be to:

First post and replies  | Last post by Harris, 3 months ago

Which of the following is the MOST effective way for senior management to support the integration of information security governance into corporate governance?

First post and replies  | Last post by Vicente, 3 months ago

Which of the following is the PRIMARY benefit to an organization using an automated event monitoring solution?

First post and replies  | Last post by Esteban, 3 months ago

The need for employees to:

First post and replies  | Last post by Chuck, 3 months ago

Which of the following would BEST enable an organization to effectively monitor the implementation of standardized configurations?

First post and replies  | Last post by Isaiah, 3 months ago

Which of the following should the information security manager do FIRST?

First post and replies  | Last post by Carmelo, 3 months ago

Which of the following should be used to attain sustainable and continuous information security process improvement?

First post and replies  | Last post by Theo, 3 months ago

An organization establishes an internal document collaboration site. To ensure data confidentiality of each project group, it is MOST important to:

First post and replies  | Last post by Cletus, 3 months ago

In an organization with a rapidly changing environment, business management has accepted an information security risk. It is MOS important for the information security manager to ensure:

First post and replies  | Last post by Ernest, 3 months ago

Which of the following should be the FIRST step of incident response procedures?

First post and replies  | Last post by Eldridge, 3 months ago

The PRIMARY purpose of asset valuation for the management of information security is to:

First post and replies  | Last post by Colton, 3 months ago

Which of the following is the BEST way to measure the effectiveness of a newly implemented social engineering training program?

First post and replies  | Last post by Thurman, 3 months ago

After implementing an information security governance framework, which of the following would provide the BEST information to develop an information security project plan?

First post and replies  | Last post by Randolph, 3 months ago

Which of the following provides the BEST input to maintain an effective asset classification program?

First post and replies  | Last post by Eldridge, 3 months ago

Which of the following would BEST fulfill a board of directors' request for a concise

First post and replies  | Last post by Carmelo, 3 months ago

Reviewing security objectives and ensuring the integration of security across business units is PRIMARILY the focus of the:

First post and replies  | Last post by Orval, 3 months ago

Which of the following is MOST important for an information security manager to consider when developing a new information security policy?

First post and replies  | Last post by Philip, 3 months ago

Which of the following is the MOST effective way to facilitate the implementation of IT security program objectives?

First post and replies  | Last post by Octavio, 3 months ago

What should be an information security manager's FIRST course of action when an organization is subject to a new regulatory requirement?

First post and replies  | Last post by Marshall, 3 months ago

Which of the following is MOST helpful when justifying the funding required for a compensating control?

First post and replies  | Last post by Carrol, 3 months ago

An information security manager is concerned that executive management does not su the following is the BEST way to address this situation?

First post and replies  | Last post by Rueben, 3 months ago

Which of the following is the MOST important reason for an organization to develop an information security governance program?

First post and replies  | Last post by Colton, 3 months ago