Latest CISM Exam Premium Dumps provide by TrainingQuiz.com to help you Passing CISM Exam! TrainingQuiz.com offers the updated CISM exam dumps, the TrainingQuiz.com CISM exam questions has been updated to correct Answer. Get the latest TrainingQuiz.com CISM pdf dumps with Exam Engine here:
(1041 Q&As Dumps, 40%OFF Special Discount: DumpsDB)
What is the BEST policy for securing data on mobile universal serial bus (USB) drives?
Correct Answer: B
Explanation Encryption provides the most effective protection of data on mobile devices. Authentication on its own is not very secure. Prohibiting employees from copying data to USB devices and limiting the use of USB devices are after the fact.
Question 32
The MOST likely cause of a security information event monitoring (SIEM) solution failing to identify a serious incident is that the system:
Correct Answer: A
Question 33
After a recovery from a successful malware attack, instances of the malware continue to be discovered. Which phase of incident response was not successful?
Correct Answer: A
Explanation Eradication is the phase of incident response where the incident team removes the threat from the affected systems and restores them to a secure state. If this phase is not successful, the malware may persist or reappear on the systems, causing further damage or compromise. Therefore, eradication is the correct answer. References: * https://www.securitymetrics.com/blog/6-phases-incident-response-plan * https://www.atlassian.com/incident-management/incident-response * https://eccouncil.org/cybersecurity-exchange/incident-handling/what-is-incident-response-life-cycle/
Question 34
What should be an information security manager's FIRST step when developing a business case for a new intrusion detection system (IDS) solution?
Correct Answer: A
Explanation The first step when developing a business case for a new intrusion detection system (IDS) solution is to define the issues to be addressed. A business case is a document that provides the rationale and justification for initiating a project or investment. It typically includes information such as the problem statement, the objectives, the alternatives, the costs and benefits, the risks and assumptions, and the expected outcomes. The first step in developing a business case is to define the issues to be addressed, which means identifying and describing the current situation, the problems or challenges faced by the organization, and the needs or opportunities for improvement. By defining the issues to be addressed, the information security manager can establish the scope and purpose of the business case, and provide a clear and compelling problem statement that explains why a new IDS solution is needed. The other options are not the first step when developing a business case for a new IDS solution, although they may be part of the subsequent steps. Performing a cost-benefit analysis is a step that involves comparing the costs and benefits of different alternatives, including the new IDS solution and the status quo. A cost-benefit analysis can help evaluate and justify the feasibility and desirability of each alternative, and support the decision-making process. Calculating the total cost of ownership (TCO) is a step that involves estimating the direct and indirect costs associated with acquiring, operating, maintaining, and disposing of an asset or a system over its entire life cycle. A TCO calculation can help determine the long-term financial implications of investing in a new IDS solution, and compare it with other alternatives. Conducting a feasibility study is a step that involves assessing the technical, operational, legal, and economic aspects of implementing a project or an investment. A feasibility study can help identify and mitigate any potential issues or risks that may affect the success of the project or investment, and provide recommendations for improvement
Question 35
Information security policy enforcement is the responsibility of the:
Correct Answer: C
Section: INFORMATION SECURITY GOVERNANCE Explanation: Information security policy enforcement is the responsibility of the chief information security officer (CISO), first and foremost. The board of directors and executive management should ensure that a security policy is in line with corporate objectives. The chief information officer (CIO) and the chief compliance officer (CCO) are involved in the enforcement of the policy but are not directly responsible for it.
