CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 167
1. An information security manager learns that the root password of an external FTP server may be subject to brute force attacks. Which of the following would be the MOST appropriate way to reduce the likelihood of a successful attack?
A) Block the source IP address of the attacker.
B) Lock remote logon after multiple failed attempts.
C) Disable access to the externally facing server.
D) Install an intrusion detection system (IDS).
2. An advantage of antivirus software schemes based on change detection is that they have:
A) a chance of detecting current and future viral strains.
B) a more flexible directory of viral signatures.
C) to be updated less frequently than activity monitors.
D) the highest probability of avoiding false alarms.
3. Which of the following is the BEST performed by the security department?
A) Approving standards for accessing the operating system
B) Logging unauthorized access to the operating system
C) Managing user profiles for accessing the operating system
D) Provisioning users to access the operating system
4. An organization outsources its payroll processing. Which of the following would be the BEST key risk indicator for monitoring the information security of the service provider?
A) Number of security incidents by severity
B) Number of critical security patches
C) Percentage of application up-time
D) Number of manual payroll adjustments
5. Senior management asks the information security manager for justification before approving the acquisition of a new intrusion detection system (IDS). The BEST course of action is to provide:
A) documented industry best practices
B) a gap analysis against the new IDS controls.
C) a business case.
D) a business impact analysis (BIA).
A) Block the source IP address of the attacker.
B) Lock remote logon after multiple failed attempts.
C) Disable access to the externally facing server.
D) Install an intrusion detection system (IDS).
2. An advantage of antivirus software schemes based on change detection is that they have:
A) a chance of detecting current and future viral strains.
B) a more flexible directory of viral signatures.
C) to be updated less frequently than activity monitors.
D) the highest probability of avoiding false alarms.
3. Which of the following is the BEST performed by the security department?
A) Approving standards for accessing the operating system
B) Logging unauthorized access to the operating system
C) Managing user profiles for accessing the operating system
D) Provisioning users to access the operating system
4. An organization outsources its payroll processing. Which of the following would be the BEST key risk indicator for monitoring the information security of the service provider?
A) Number of security incidents by severity
B) Number of critical security patches
C) Percentage of application up-time
D) Number of manual payroll adjustments
5. Senior management asks the information security manager for justification before approving the acquisition of a new intrusion detection system (IDS). The BEST course of action is to provide:
A) documented industry best practices
B) a gap analysis against the new IDS controls.
C) a business case.
D) a business impact analysis (BIA).
1. Right Answer: B
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: C
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: C
Explanation:
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: C
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: C
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment