CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISM—Certified Information Security Manager - Part 181
1. Which of the following is the BEST way to identify the potential impact of a successful attack on an organization's mission critical applications?
A) Conduct penetration testing.
B) Execute regular vulnerability scans.
C) Perform independent code review.
D) Perform application vulnerability review.
2. Which of the following is the BEST method to defend against social engineering attacks?
A) Periodically perform antivirus scans to identify malware.
B) Communicate guidelines to limit information posted to public sites.
C) Employ the use of a web-content filtering solution.
D) Monitor for unauthorized access attempts and failed logins.
3. A validated patch to address a new vulnerability that may affect a mission-critical server has been released. What should be done immediately?
A) Add mitigating controls.
B) Take the server off-line and install the patch.
C) Check the server's security and install the patch.
D) Conduct an impact analysis.
4. Which of the following is MOST helpful to maintain cohesiveness within an organization's information security resource?
A) Information security architecture
B) Security gap analysis
C) Business impact analysis
D) Information security steering committee
5. During a review to approve a penetration test plan, which of the following should be an information security manager's PRIMARY concern?
A) Penetration test team's deviation from scope
B) Unauthorized access to administrative utilities
C) False positive alarms to operations staff
D) Impact on production systems
A) Conduct penetration testing.
B) Execute regular vulnerability scans.
C) Perform independent code review.
D) Perform application vulnerability review.
2. Which of the following is the BEST method to defend against social engineering attacks?
A) Periodically perform antivirus scans to identify malware.
B) Communicate guidelines to limit information posted to public sites.
C) Employ the use of a web-content filtering solution.
D) Monitor for unauthorized access attempts and failed logins.
3. A validated patch to address a new vulnerability that may affect a mission-critical server has been released. What should be done immediately?
A) Add mitigating controls.
B) Take the server off-line and install the patch.
C) Check the server's security and install the patch.
D) Conduct an impact analysis.
4. Which of the following is MOST helpful to maintain cohesiveness within an organization's information security resource?
A) Information security architecture
B) Security gap analysis
C) Business impact analysis
D) Information security steering committee
5. During a review to approve a penetration test plan, which of the following should be an information security manager's PRIMARY concern?
A) Penetration test team's deviation from scope
B) Unauthorized access to administrative utilities
C) False positive alarms to operations staff
D) Impact on production systems
1. Right Answer: A
Explanation:
2. Right Answer: C
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: D
Explanation:
Explanation:
2. Right Answer: C
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: A
Explanation:
5. Right Answer: D
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment