Home > Certified Information Security Manager (CISM) > Quizzes > CISM: Governance Of Third-party Relationships
CISM: Governance Of Third-party Relationships
Fast practice, instant feedback. Timer auto-submits when time’s up.
Avg score: 63% Most missed: “Which of the following will have the biggest influence while planning for busine…”
CISM: Governance Of Third-party Relationships
Time left 00:00
22 Questions

1. What is the most important consideration for designing a security policy for a multi-national organization operating in different countries?
2. Which of the following is the risk that is likely to be most ignored during an onsite inspection of an offshore service provider?
3. What is the most important factor for promoting a positive information security culture?
4. The information security manager noticed a regulation that impacts the handling of sensitive data. They should first do which of the following?
5. Which of the following factors is the most difficult to estimate?
6. Privacy laws are mainly focused on which of the following?
7. The information security manager should address laws and regulations in which way?
8. Due to changes in the business strategy, certain information now no longer supports the purpose of the business. What should be done with this information?
9. Primarily, the requirements of an information security program are based on which of the following?
10. The most important factor to consider while developing a control policy is which of the following?
11. What should the next step be for the information security manager when noticing new regulations impacting some of the organization's processes?
12. Which of the following is the most important consideration in the retention of business records?
13. What is the most important consideration for organizations involved in cross-border transactions?
14. The first step of an information security manager who noticed a new regulation impacting one of the organizations' processes should be which of the following?
15. What should be the first step of the information security manager when an organization plans to implement a bring your own device (BYOD) policy for mobile devices?
16. Which of the following will have the biggest influence while planning for business record retention?
17. What should be the next step for the board of directors when noticing new regulations impacting some of the organization's processes?
18. What does an organization's risk appetite mostly depend on?
19. What factor has the greatest impact on the security strategy?
20. What is the most important factor that determines the acceptable level of organizational standards?
21. The factor that influences the design and implementation of the information security program the most is which of the following?
22. New regulatory requirements impacting information security will mostly come from which of the following?