Home > Certified Information Security Manager (CISM) > Quizzes > CISM: Information Security Governance
CISM: Information Security Governance
Fast practice, instant feedback. Timer auto-submits when time’s up.
Avg score: 61% Most missed: “What is the main objective of the information security strategy?”
CISM: Information Security Governance
Time left 00:00
25 Questions

1. The prime objective of developing an information security strategy is which of the following?
2. The best way to align the security goals with the business goals is which of the following?
3. Immediately after implementing access control for the internet, employees started complaining of being unable to perform business functions on internet sites. This is an example of which of the following?
4. The security baseline of a mature organization is most likely defined as which of the following?
5. The best way to prepare for a regulatory audit is which of the following?
6. The objective of the information security strategy can be best described as which of the following?
7. The most important role for a CISO is which of the following?
8. The timeline for the implementation of information security strategic plan should be which of the following?
9. 'Systems thinking' in reference to information security indicates which of the following?
10. The most important factor to be included in the information security strategic plan is which of the following?
11. Which of the following is the best approach for an information security manager when there is a disagreement between them and the business manager on security aspects of a new process?
12. Which of the following is considered the most significant key risk indicator?
13. The connection between business objectives and security should be demonstrated by which of the following?
14. The most important factor in the development of an information security strategy is which of the following?
15. The most critical factor for designing an information security strategy is which of the following?
16. In an information security steering committee, there is no representation from user management. Which of the following is the main risk as a result of this?
17. The most important factor for developing risk management strategies is which of the following?
18. The main objective of designing an information security strategy is which of the following?
19. The most important factor for the development of a security strategy is which of the following?
20. The best way to address the conflicting requirements of a multinational organization's security policy with local regulations is which of the following?
21. What is the main objective of the information security strategy?
22. The most important consideration while developing an information security strategy is which of the following?
23. The most important aspect from the perspective of senior management in an information security strategy is which of the following?
24. Which of the following is considered to have the most important strategic value?
25. Which of the following is the main reason for a change in policy?