← Back to exam page

CISM Certified Information Security Manager

Loading demo links...

Showing 1–3 of 15 questions

Question 1

Which of the following is the MOST important factor of a successful information security program?

Select an option, then click Submit answer.

  • The program follows industry best practices.

  • The program is based on a well-developed strategy.

  • The program is cost-efficient and within budget,

  • The program is focused on risk management.
Question 2

Which of the following is an information security manager's MOST important course of action when responding to a major security incident that could disrupt the business?

Select an option, then click Submit answer.

  • Follow the escalation process.

  • Identify the indicators of compromise.

  • Notify law enforcement.

  • Contact forensic investigators.
Question 3

Which of the following BEST ensures information security governance is aligned with corporate governance?

Select an option, then click Submit answer.

  • A security steering committee including IT representation

  • A consistent risk management approach

  • An information security risk register

  • Integration of security reporting into corporate reporting