FREE Certified Information Security Manager (CISM) MCQ Questions and Answers

Question 1

What should a risk management strategy's main goal be?

Accepted Answer

Identify credible risks and reduce them to an acceptable level

Answer

Identify credible risks and transfer them to an external party

Answer

Determine the organization's risk appetite

Answer

Eliminate credible risks

Question 2

A manufacturing company's CISO, Linda, is developing a new cyber-risk governance procedure. What should Linda do initially to ensure the success of this process?

Accepted Answer

Charter a security steering committee consisting of IT, security, and business leaders

Answer

Charter a security steering committee consisting of IT and cybersecurity leaders

Answer

Develop a RACI matrix that defines executive roles and responsibilities

Answer

Develop a risk management process similar to what is found in ISO/IEC 27001

Question 3

What procedures must be followed before a risk assessment can begin in an organization?

Accepted Answer

Determine scope, purpose, and criteria for the audit

Answer

Determine the qualifications of the firm that will perform the audit

Answer

Determine scope, applicability, and purpose for the audit

Answer

Determine the qualifications of the person(s) who will perform the audit

Question 4

A risk manager in an organization just finished a risk assessment. One of the conclusions was requested by executive management to be eliminated from the final report by the risk manager. What is demonstrated by this removal?

Accepted Answer

Risk acceptance

Answer

Gerrymandering

Answer

Internal politics

Answer

Risk avoidance

Question 5

A new CISO is managing asset inventory processes at a financial services company. The company uses both on-premises and IaaS-based virtualization services. What method will efficiently identify all active assets?

Accepted Answer

Perform discovery scans on all networks.

Answer

Obtain a list of all assets from the patch management platform.

Answer

Count all of the servers in each data center.

Answer

Obtain a list of all assets from the security event and information management (SIEM) system.

Question 6

According to an internal audit of the employee termination procedure, one or more terminated employee user accounts were not locked or deleted in 20% of employee terminations. The internal audit division discovered that regular monthly user access reviews detected 100% of missed account closures, leading to those user accounts being closed by 60 days following user termination. What, if any, corrective measures are necessary?

Accepted Answer

Improve the user termination process to reduce the number of missed account closures.

Answer

Increase user access review process frequency to twice per week.

Answer

Increase user access review process frequency to weekly.

Answer

No action is necessary since monthly user access review process is effective.

Question 7

What presents the biggest challenge when putting a data classification scheme into practice?

Accepted Answer

Training end users on data handling procedures

Answer

Implementing and tuning DLP agents on servers and endpoints

Answer

Difficulty with industry regulators

Answer

Understanding the types of data in use