PHP-Fusion Powered Website - Articles: Isaca- CISM

Users Online

· Guests Online: 13

· Members Online: 0

· Total Members: 188
· Newest Member: meenachowdary055

Forum Threads

Newest Threads

No Threads created

Hottest Threads

No Threads created

Latest Articles

· How to Set Priorities
· Chart of Accounts
· Types of Cyber Attacks
· How Https works
· Security Camera

Oh no! Where's the JavaScript?
Your Web browser does not have JavaScript enabled or does not support JavaScript. Please enable JavaScript on your Web browser to properly view this Web site,
or upgrade to a Web browser that does support JavaScript; Firefox, Safari, Opera, Chrome or a version of Internet Explorer newer then version 6.

Articles Hierarchy

Articles Home » CISA » Isaca- CISM

Isaca- CISM

Question ID 16808
Investment in security technology and processes should b

e based on:

Option A
clear alignment with the goals and objectives of the organization.

Option B
success cases that have been experienced in previous projects.

Option C
best business practices.

Option D
safeguards that are inherent in existing technology.

Correct Answer A

Description Explanation: Organization maturity level for the protection of information is a clear alignment with goals and objectives of the organization. Experience in previous projects is dependent upon other business models which may not be applicable to the current model. Best business practices may not be applicable to the organization's business needs. Safeguards inherent to existing technology are low cost but may not address all business needs and/or goals of the organization.
Update Date and Time 2017-12-29 04:30:59

Question ID 16809
A security manager is preparing a report to obtain the commitment of executive
management to a security program. Inclusion of which of the following would be of MOST
value?

Option A
Examples of genuine incidents at similar organizations

Option B
Statement of generally accepted best practices

Option C
Associating realistic threats to corporate objectives

Option D
Analysis of current technological exposures

Correct Answer C

Description Explanation: Linking realistic threats to key business objectives will direct executive attention to them. All other options are supportive but not of as great a value as choice C when trying to obtain the funds for a new program.
Update Date and Time 2017-12-29 04:31:40

Page 2 of 6: 123 4 5 6

Comments

No Comments have been Posted.

Post Comment

Please Login to Post a Comment.

Ratings

Rating is available to Members only.

Please login or register to vote.

No Ratings have been Posted.

Render time: 1.63 seconds

21,617,679 unique visits

Question ID 16808	Investment in security technology and processes should b e based on:
Option A	clear alignment with the goals and objectives of the organization.
Option B	success cases that have been experienced in previous projects.
Option C	best business practices.
Option D	safeguards that are inherent in existing technology.
Correct Answer	A

Question ID 16809	A security manager is preparing a report to obtain the commitment of executive management to a security program. Inclusion of which of the following would be of MOST value?
Option A	Examples of genuine incidents at similar organizations
Option B	Statement of generally accepted best practices
Option C	Associating realistic threats to corporate objectives
Option D	Analysis of current technological exposures
Correct Answer	C