Home > Certified Information Security Manager (CISM) > Quizzes > CISM: Policy, Standards, And Procedures
CISM: Policy, Standards, And Procedures
Fast practice, instant feedback. Timer auto-submits when time’s up.
Avg score: 54% Most missed: “Procedures are correctly linked to security policies through which of the follow…”
CISM: Policy, Standards, And Procedures
Time left 00:00
11 Questions

1. Which of the following is a function that should be exclusively performed by the information security department?
2. Procedures are correctly linked to security policies through which of the following?
3. Which of the following documents will be updated most frequently?
4. What is the best way to relate a standard to a policy?
5. The information security standard should primarily include what?
6. 'All computers are required to have the Windows 10 operating system and all servers are required to have Windows 2008.' What is this statement an example of?
7. Who is ultimately responsible for ensuring that information policies are consistent with laws and regulations?
8. What is the most appropriate document to ensure compliance with a specific regulatory requirement?
9. An exception to the information security policy can be granted by which of the following?
10. An information security standard is most likely to be changed because of which of the following?
11. An information security standard is most likely to be changed because of which of the following?