CISM

Which of the following is the MOST effective method for categorizing system and data criticality during the risk assessment process?

First post and replies  | Last post by Jacques, 1 year ago

The BEST way of establish a security baseline is by documenting

First post and replies  | Last post by Carrol, 1 year ago

Which of the following is MOST likely to occur following a security awareness campaign''

First post and replies  | Last post by Philip, 1 year ago

Which of the following would contribute MOST to employees' understanding of data handling responsibilities?

First post and replies  | Last post by Rueben, 1 year ago

When making an outsourcing decision, which of the following functions is MOST important to retain within the organization?

First post and replies  | Last post by Chas, 1 year ago

Which of the following is the BEST type of access control for an organization with employees who move between departments?

First post and replies  | Last post by Man, 1 year ago

Which of the following is the MOST important reason to have documented security procedures and guidelines?

First post and replies  | Last post by Carrol, 1 year ago

Which of the following is MOST important when prioritizing an information security incident?

First post and replies  | Last post by Mario, 1 year ago

Which of the following has the PRIMARY responsibility of ensuring an organizations information security strategy supports business goals?

First post and replies  | Last post by Galen, 1 year ago

Which of the following should cause the GREATEST concern for an information security manager reviewing the effectiveness of an intrusion prevention system (IDS)?

First post and replies  | Last post by Nathaniel, 1 year ago

Which of the following is the MOST important factor to consider when establishing a severity hierarchy for information security incidents?

First post and replies  | Last post by Lloyd, 1 year ago

Which of the following is the MOST important consideration when determining the approach for gaining organization-wide acceptance of an information security plan?

First post and replies  | Last post by Wilber, 1 year ago

Which of the following is the MOST important element of an effective external information security communication plan?

First post and replies  | Last post by Rolando, 1 year ago

Which of the following is the MOST effective way to mitigate this risk to the organization's critical systems?

First post and replies  | Last post by Wilber, 1 year ago

In this situation during which phase would integration be MOST effectrve?

First post and replies  | Last post by Thurman, 1 year ago

Which of the following should be an information security manager's PRIMARY focus during the development of a critical system storing highly confidential data?

First post and replies  | Last post by Gonzalo, 1 year ago

In which of the following ways can an information security manager BEST ensure that security controls are adequate for supporting business goals and objectives?

First post and replies  | Last post by Chuck, 1 year ago

Which of the following is the PRIMARY reason social media has become a popular target for attack?

First post and replies  | Last post by Ernest, 1 year ago

Which of the following is the MOST effective approach for integrating security into application development?

First post and replies  | Last post by Jacques, 1 year ago

Which of the following is the BEST source of information to help determine whether a third party's connections to the organization's internal network are aligned with internal control requirements?

First post and replies  | Last post by Theo, 1 year ago

Risk reporting requirements should be PRIMARILY based on:

First post and replies  | Last post by Rashad, 1 year ago

An information security manager is implementing controls to protect the organization's data. The FIRST step in this process should be to:

First post and replies  | Last post by Harris, 1 year ago

Which of the following is the MOST effective way for senior management to support the integration of information security governance into corporate governance?

First post and replies  | Last post by Vicente, 1 year ago

Which of the following is the PRIMARY benefit to an organization using an automated event monitoring solution?

First post and replies  | Last post by Esteban, 1 year ago

The need for employees to:

First post and replies  | Last post by Chuck, 1 year ago

When considering whether to adopt bring your own device (BYOD). it is MOST important for the information security manager to ensure that

First post and replies  | Last post by Chas, 1 year ago

Which of the following is MOST helpful to review to gain an understanding of the effectiveness of an organization s information security program?

First post and replies  | Last post by Colton, 1 year ago

Which of the following factors are the MAIN reasons why large networks are vulnerable?

First post and replies  | Last post by Eldridge, 1 year ago

To gain a clear+ understanding of the impact that a new regulatory requirement will have on an organization s information security controls, an information security manager should FIRST:

First post and replies  | Last post by Carrol, 1 year ago

Ensuring that activities performed by outsourcing providers comply with information security policies can BEST be accomplished through the use of:

First post and replies  | Last post by Cletus, 1 year ago