ISACA-Certified Information Security Manager

1.

Which of the following is the MOST important factor when designing information security architecture?

Technical platform interfaces Scalability of the network Development methodologies Stakeholder requirements

2.

Which of the following characteristics is MOST important when looking at prospective candidates for the role of chief information security officer (CISO)?

Knowledge of information technology platforms, networks and development methodologies
Ability to understand and map organizational needs to security technologies Knowledge of the regulatory environment and project management techniques Ability to manage a diverse group of individuals and resources across an organization

3.

Which of the following are likely to be updated MOST frequently?

Procedures for hardening database servers Standards for password length and complexity Policies addressing information security governance Standards for document retention and destruction

4.

Who should be responsible for enforcing access rights to application data?

Data owners Business process owners The security steering committee Security administrators
885CB989129A5F974833949052CFB2F2

5.

The chief information security officer (CISO) should ideally have a direct reporting relationship to the:

head of internal audit. chief operations officer (COO). chief technology officer (CTO). legal counsel.

6.

Which of the following is the MOST essential task for a chief information security officer (CISO) to perform?

Update platform-level security settings Conduct disaster recovery test exercises Approve access to critical financial systems Develop an information security strategy paper

7.

Developing a successful business case for the acquisition of information security software products can BEST be assisted by:

assessing the frequency of incidents. quantifying the cost of control failures. calculating return on investment (ROD projections. comparing spending against similar organizations.

8.

When an information security manager is developing a strategic plan for information security, the timeline for the plan should be:

aligned with the IT strategic plan. based on the current rate of technological change. three-to-five years for both hardware and software. aligned with the business strategy.

9.

Which of the following is the MOST important information to include in a strategic plan for information security?

Information security staffing requirements Current state and desired future state IT capital investment requirements information security mission statement

10.

Information security projects should be prioritized on the basis of:

time required for implementation. impact on the organization. total cost for implementation. mix of resources required.

ISACA-Certified Information Security Manager

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

COMPANY

Products

OTHERS

Partner

ISACA-Certified Information Security Manager

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

Detail Form

COMPANY

Products

OTHERS

Partner