CISM - Risk management & Response
Exam Questions & Answers (Grade
A+)
Which of the following would BEST address the risk of data
leakage?
File backup procedures
Database integrity checks
Acceptable use policies
Incident response procedures - C is the correct answer.
Justification
File backup procedures ensure the availability of information in
alignment with data retention requirements but do nothing to
prevent leakage.
Database integrity checks verify the allocation and structural
integrity of all the objects in the specified database but do nothing
to prevent leakage.
,CISM - Risk management & Response
Exam Questions & Answers (Grade
A+)
An acceptable use policy establishes an agreement between users
and the enterprise and defines for all parties the ranges of use that
are approved before gaining access to a network or the Internet.
Incident response procedures provide detailed steps that help an
organization minimize the impact of an adverse event and do not
directly address data leakage.
Risk acceptance is a component of which of the following?
Risk assessment
Risk treatment
Risk identification
Risk monitoring - B is the correct answer.
,CISM - Risk management & Response
Exam Questions & Answers (Grade
A+)
Justification
Risk assessment includes identification and analysis to determine
the likelihood and potential consequences of a compromise, which
is not when risk is to be considered for acceptance or requires
mitigation.
If after risk evaluation a risk is unacceptable, acceptability is
determined after risk mitigation efforts.
Risk identification is the process during assessment during which
viable risk is identified through developing a series of potential risk
scenarios.
Monitoring is unrelated to risk acceptance.
In controlling information leakage, management should FIRST
establish:
a data leak prevention program.
, CISM - Risk management & Response
Exam Questions & Answers (Grade
A+)
user awareness training.
an information classification process.
a network intrusion detection system. - C is the correct answer.
Justification
Only after data are determined critical to the organization can a
data leak prevention program be properly implemented.
User awareness training can be helpful but only after data have
been classified.
Information classification must be conducted first.
Network intrusion detection is a technology that can support the
data leak prevention program, but it is not a primary consideration.
Exam Questions & Answers (Grade
A+)
Which of the following would BEST address the risk of data
leakage?
File backup procedures
Database integrity checks
Acceptable use policies
Incident response procedures - C is the correct answer.
Justification
File backup procedures ensure the availability of information in
alignment with data retention requirements but do nothing to
prevent leakage.
Database integrity checks verify the allocation and structural
integrity of all the objects in the specified database but do nothing
to prevent leakage.
,CISM - Risk management & Response
Exam Questions & Answers (Grade
A+)
An acceptable use policy establishes an agreement between users
and the enterprise and defines for all parties the ranges of use that
are approved before gaining access to a network or the Internet.
Incident response procedures provide detailed steps that help an
organization minimize the impact of an adverse event and do not
directly address data leakage.
Risk acceptance is a component of which of the following?
Risk assessment
Risk treatment
Risk identification
Risk monitoring - B is the correct answer.
,CISM - Risk management & Response
Exam Questions & Answers (Grade
A+)
Justification
Risk assessment includes identification and analysis to determine
the likelihood and potential consequences of a compromise, which
is not when risk is to be considered for acceptance or requires
mitigation.
If after risk evaluation a risk is unacceptable, acceptability is
determined after risk mitigation efforts.
Risk identification is the process during assessment during which
viable risk is identified through developing a series of potential risk
scenarios.
Monitoring is unrelated to risk acceptance.
In controlling information leakage, management should FIRST
establish:
a data leak prevention program.
, CISM - Risk management & Response
Exam Questions & Answers (Grade
A+)
user awareness training.
an information classification process.
a network intrusion detection system. - C is the correct answer.
Justification
Only after data are determined critical to the organization can a
data leak prevention program be properly implemented.
User awareness training can be helpful but only after data have
been classified.
Information classification must be conducted first.
Network intrusion detection is a technology that can support the
data leak prevention program, but it is not a primary consideration.
