Quiz CISM

Quiz CISM, Certified Information Security Manager

Which of the following roles is PRIMARILY responsible for determining the information classification levels for a given information asset?

The PRIMARY reason for assigning classes of sensitivity and criticality to information resources is to provide a basis for:

Which mechanism would BEST help to further align the organization with other data security regulatory requirements as per new business needs?

which of the following will BEST produce reliable results?

Which of the following is the BEST method to ensure the overall effectiveness of a risk management program?

The MOST effective use of a risk register is to:

which of the following should be completed NEXT when establishing an information security program?

Which of the following are the essential ingredients of a business impact analysis (B1A)?

A risk management approach to information protection is:

Which of the following is the MOST effective way to treat a risk such as a natural disaster that has a low probability and a high impact level?