• Home
  • Articles
  • [Q59-Q79] Try 100% Updated CISM-CN Exam Questions [2023]

[Q59-Q79] Try 100% Updated CISM-CN Exam Questions [2023]

Share

Try 100% Updated CISM-CN Exam Questions [2023]

Pass CISM-CN Exam - Real Questions and Answers

NEW QUESTION # 59
以下哪一項是確保符合密碼標準的最佳方法?

  • A. 使用密碼破解軟件
  • B. 實施密碼同步軟件
  • C. 自動執行密碼語法規則
  • D. 用戶意識計劃

Answer: C

Explanation:
Automated enforcement of password syntax rules is the best method to ensure compliance with password standards. Password syntax rules define the minimum and maximum length, character types, and construction of passwords. By enforcing these rules automatically, the system can prevent users from creating or using weak or insecure passwords that do not meet the standards. According to NIST, password syntax rules should allow at least 8 characters and up to 64 characters, accept all printable ASCII characters and Unicode characters, and encourage the use of long passphrases1. The other options are not methods to ensure compliance with password standards, but rather methods to verify or improve password security. Implementing password-synchronization software can help users manage multiple passwords across different systems, but it does not ensure that the passwords comply with the standards2. Using password-cracking software can help test the strength of passwords and identify weak or compromised ones, but it does not ensure that users follow the standards3. A user-awareness program can help educate users about the importance of password security and the best practices for creating and using passwords, but it does not ensure that users comply with the standards. Reference: 1: NIST Password Guidelines and Best Practices for 2020 - Auth0 2: Password synchronization - Wikipedia 3:


NEW QUESTION # 60
创建事件响应计划时,以下哪项最重要?

  • A. 记录事件通知和升级流程
  • B. 识别事件的构成
  • C. 与风险评估过程保持一致
  • D. 识别易受攻击的数据资产

Answer: B


NEW QUESTION # 61
事件響應團隊如何最好地利用業務影響分析 (BIA) 的結果?

  • A. 在事件期間分配恢復優先級
  • B. 計算事件恢復階段後的殘餘風險
  • C. 確定總擁有成本 (TCO)
  • D. 評估對業務恢復至關重要的供應商

Answer: A


NEW QUESTION # 62
實施安全計劃時應首先執行以下哪項操作?

  • A. 執行風險分析
  • B. 確定信息資產的價值。
  • C. 創建信息資產清單。
  • D. 實現數據加密。

Answer: A

Explanation:
Performing a risk analysis is the first step when implementing a security program because it helps to identify and prioritize the potential threats and vulnerabilities that may affect the organization's assets, processes, or objectives, and determine their impact and likelihood. Implementing data encryption is not the first step, but rather a possible subsequent step that involves applying a specific security control or technique to protect data from unauthorized access or modification. Creating an information asset inventory is not the first step, but rather a possible subsequent step that involves identifying and classifying the organization's assets based on their value and sensitivity. Determining the value of information assets is not the first step, but rather a possible subsequent step that involves estimating and quantifying the worth of information assets to the organization. Reference: https://www.isaca.org/resources/isaca-journal/issues/2015/volume-6/measuring-the-value-of-information-security-investments https://www.isaca.org/resources/isaca-journal/issues/2017/volume-3/how-to-measure-the-effectiveness-of-your-information-security-management-system


NEW QUESTION # 63
在確定採用哪種類型的故障轉移站點時,以下哪一項是最重要的考慮因素?

  • A. 災難恢復測試結果
  • B. 恢復時間目標 (RTO)
  • C. 數據保留要求
  • D. 互惠協議

Answer: B

Explanation:
The most important consideration when determining which type of failover site to employ is the recovery time objectives (RTOs). A failover site is a backup site that can be used to restore the functionality and operations of an organization's primary site in the event of a disaster or disruption. There are different types of failover sites, such as hot sites, warm sites, and cold sites, that vary in terms of availability, cost, and complexity. A recovery time objective (RTO) is a metric that defines the maximum acceptable amount of time that an organization can tolerate to restore a system or an application after a disaster or disruption. By determining the RTOs for each system or application, the organization can choose the most suitable type of failover site that can meet its recovery needs and expectations. For example, if the RTO for a critical system is very low, the organization may opt for a hot site that can provide immediate failover and minimal downtime. However, if the RTO for a non-critical system is high, the organization may choose a cold site that requires manual setup and activation, but has lower cost and maintenance. The other options are not the most important consideration when determining which type of failover site to employ, although they may be some factors or constraints that affect the decision. Reciprocal agreements are arrangements between two or more organizations that agree to provide backup facilities or resources to each other in case of a disaster or disruption. Reciprocal agreements can help reduce the cost and complexity of setting up and maintaining a failover site, but they may not guarantee the availability or compatibility of the backup facilities or resources. Disaster recovery test results are outcomes of testing and validating the functionality and performance of a failover site. Disaster recovery test results can help evaluate and improve the effectiveness and efficiency of a failover site, but they do not determine which type of failover site to employ. Data retention requirements are policies and regulations that define how long and in what format an organization must store its data. Data retention requirements can affect the design and configuration of a failover site, but they do not dictate which type of failover site to employ


NEW QUESTION # 64
信息安全事件事後審查的主要目標是:

  • A. 最小化影響
  • B. 確定影響
  • C. 更新風險狀況
  • D. 防止複發。

Answer: D

Explanation:
The primary objective of a post-incident review of an information security incident is to identify the root cause of the incident and determine what can be done to prevent a similar incident from happening in the future. This process helps organizations to learn from past incidents and make improvements to their security posture to reduce the risk of future incidents. By conducting a thorough post-incident review, organizations can identify areas for improvement in their security controls, policies, and procedures, and implement changes to prevent similar incidents from happening in the future. Other important objectives of a post-incident review may include updating the risk profile, minimizing impact, and determining the impact of the incident, but the main focus should be on identifying ways to prevent recurrence.


NEW QUESTION # 65
以下哪一項最能讓新的信息安全經理獲得高級管理層對信息安全治理計劃的支持?

  • A. 提供組織內信息安全事件的示例
  • B. 提供外部審核結果
  • C. 展示該計劃對組織的價值
  • D. 討論類似組織中的治理計劃

Answer: C

Explanation:
The best way to obtain senior management support for an information security governance program is to demonstrate the program's value to the organization, such as how it can help achieve business objectives, reduce operational risks, enhance resilience, and comply with regulations. Demonstrating the value of information security governance can help senior management understand the benefits and costs of the program, and motivate them to participate in the decision-making process. The other options, such as discussing governance programs in similar organizations, providing external audit results, or providing examples of incidents, may not be sufficient or persuasive enough to obtain senior management support, as they may not reflect the specific needs and goals of the organization. Reference:
https://www.isaca.org/resources/news-and-trends/isaca-now-blog/2020/how-to-involve-senior-management-in-the-information-security-governance-process
https://www.sans.org/white-papers/992/
https://www.govtech.com/blogs/lohrmann-on-cybersecurity/how-to-get-management-support-for-your-security-program.html


NEW QUESTION # 66
當強制性安全標準阻礙實現已確定的業務目標時,信息安全經理應該首先執行以下哪項操作?

  • A. 建議接受風險。
  • B. 執行成本效益分析。
  • C. 重新審視業務目標。
  • D. 升級至高級管理層。

Answer: D

Explanation:
Escalate to senior management, because this could help the information security manager to inform the decision-makers of the situation, explain the implications and trade-offs, and seek their guidance and approval for the next steps2. However, this answer is not certain, and you might need to consider other factors as well.


NEW QUESTION # 67
以下哪项是信息安全治理的预期结果?

  • A. 业务敏捷性
  • B. 成熟度模型
  • C. 改进风险管理
  • D. 渗透测试

Answer: C


NEW QUESTION # 68
影响管理层对信息安全支持的最重要信息是:

  • A. 组织风险的识别。
  • B. 成功攻击竞争对手的报告。
  • C. 整体威胁态势的识别。
  • D. 与业务战略保持一致的示范。

Answer: D

Explanation:
The most important information for influencing management's support of information security is an demonstration of alignment with the business strategy because it shows how information security contributes to the achievement of the organization's goals and objectives, and adds value to the organization's performance and competitiveness. An identification of the overall threat landscape is not very important because it does not indicate how information security addresses or mitigates the threats or risks. A report of a successful attack on a competitor is not very important because it does not indicate how information security prevents or responds to such attacks. An identification of organizational risks is not very important because it does not indicate how information security manages or reduces the risks. Reference: https://www.isaca.org/resources/isaca-journal/issues/2016/volume-4/technical-security-standards-for-information-systems https://www.isaca.org/resources/isaca-journal/issues/2017/volume-2/how-to-align-security-initiatives-with-business-goals-and-objectives


NEW QUESTION # 69
事件管理团队收到可疑安全事件的警报。在将可疑事件归类为安全事件之前,安全经理最重要的是:

  • A. 休耕业务连续性计划(BCP)。
  • B. 休闲事件响应计划
  • C. 通知业务流程所有者。
  • D. 进行事件取证分析。

Answer: C


NEW QUESTION # 70
以下哪一項最有利於信息安全經理努力獲得高級管理層對信息安全計劃的承諾?

  • A. 提供固有風險的證據
  • B. 提出合規性要求
  • C. 傳達剩餘風險
  • D. 報告安全成熟度級別

Answer: B


NEW QUESTION # 71
组织内报告了安全事件。信息安全经理应何时联系信息所有者?之后:

  • A. 事件已被收容。
  • B. 事件已得到缓解。
  • C. 潜在事件已记录。
  • D. 事件已经确认。

Answer: D


NEW QUESTION # 72
以下哪種備份方法需要最多時間來恢復應用程序的數據?

  • A. 差動
  • B. 完整備份
  • C. 磁盤鏡像
  • D. 增量

Answer: B

Explanation:
The method that requires the MOST time to restore data for an application is a Full Backup. Full backups contain all the data that is required to restore an application, but the process of restoring the data is the most time-consuming as it involves copying all the data from the backup to the application. Incremental backups only backup the changes made since the last backup, differential backups only backup changes made since the last full backup, and disk mirroring provides real-time data replication, so the data is immediately available.


NEW QUESTION # 73
在恢复需要完全重建的受损系统时,应首先考虑以下哪项?

  • A. 补丁管理文件
  • B. 网络系统日志
  • C. 配置管理文件
  • D. 入侵检测系统(IDS)日志

Answer: C

Explanation:
When recovering a compromised system that needs a complete rebuild, the first step should be to restore configuration management files. Configuration management files are critical for identifying the system's original state and the changes that were made to it, and restoring them can help ensure that the system is rebuilt to its original state.
According to the Certified Information Security Manager (CISM) Study Manual, "The initial phase of the recovery process requires that configuration management files be restored. These files represent the foundation of the system and provide insight into the original state of the system, which is important for identifying changes that were made to the system as well as ensuring the recovery process can return the system to its original state." Patch management files, network system logs, and intrusion detection system (IDS) logs are also important in the recovery process, but they should be addressed after configuration management files have been restored.
Reference:
Certified Information Security Manager (CISM) Study Manual, 15th Edition, Page 256.


NEW QUESTION # 74
在識別出惡意軟件事件後,必須立即發生以下哪項操作?

  • A. 消滅
  • B. 準備
  • C. 恢復
  • D. 遏制

Answer: C


NEW QUESTION # 75
以下哪一項是信息安全計劃成功的最關鍵因素?

  • A. 持續審計和解決未清項目
  • B. 信息安全經理的業務知識
  • C. 經過適當培訓和充足資源的安保人員
  • D. 信息安全綜合風險評估方案

Answer: B

Explanation:
The explanation given in the manual is:
The information security manager's knowledge of the business is the most critical factor for information security program success because it enables him or her to align security objectives with business goals and communicate effectively with senior management and other stakeholders. The other choices are important elements of an information security program but not as critical as the information security manager's knowledge of the business.
An information security program is a set of policies, procedures, standards, guidelines, and tools that aim to protect an organization's information assets from threats and ensure compliance with laws and regulations. An information security manager is a professional who oversees and coordinates the implementation and maintenance of an information security program. An information security manager should have a good understanding of the business environment, culture, strategy, processes, and needs of an organization to ensure that security supports its objectives.


NEW QUESTION # 76
事件響應團隊應在以下哪個階段記錄消除導致事件的威脅所需的操作?

  • A. 識別
  • B. 遏制
  • C. 根除
  • D. 事件後審查

Answer: C


NEW QUESTION # 77
在开发业务案例以证明信息安全投资的合理性时,以下哪一项最能使高级管理层做出明智的决定?

  • A. 因安全事故造成的损失
  • B. 风险评估的结果
  • C. 安防行业投资趋势
  • D. 信息安全策略

Answer: B

Explanation:
The results of a risk assessment would best enable an informed decision by senior management when developing a business case to justify an information security investment. A risk assessment will help to identify and prioritize the threats and vulnerabilities that affect the organization's assets and processes, as well as the potential impact and likelihood of occurrence. A risk assessment will also provide a basis for selecting and evaluating the effectiveness of controls to mitigate the risks. According to CISA, developing a business case for security will be based on an in-depth understanding of organizational vulnerabilities, operational priorities, and return on investment1. The information security strategy, losses due to security incidents, and security investment trends in the industry are possible inputs or outputs of a risk assessment, but they are not sufficient to enable an informed decision by senior management. Reference: 1: The Business Case for Security - CISA 2: The Business Case for Security | CISA 3: #HowTo: Build a Business Case for Cybersecurity Investment 4: Making the Business Case for Information Security


NEW QUESTION # 78
当信息安全计划要求与雇佣和人员配置流程保持一致时,组织的主要好处是什么?

  • A. 信息资产分类适当。
  • B. 遵循安全事件报告程序。
  • C. 根据任务要求授予访问权限。
  • D. 安保人员流失率降低。

Answer: C


NEW QUESTION # 79
......

CISM-CN Exam Questions Get Updated [2023] with Correct Answers: https://www.practicedump.com/CISM-CN_actualtests.html

Free ISACA CISM-CN Test Practice Test Questions Exam Dumps: https://drive.google.com/open?id=1xSHc6iCAlHyigZKd2tM9FKehwHFrazje

Related Articles

more
ISACA CISM-CN Certification Practice Exam

Copyright © 2026 PracticeDump. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy

Disclaimers:
PracticeDump material do not contain actual Business Architecture Guild Exam Questions or materials.
SAP, Microsoft, Google, Amazon, Certiport, Qualtrics are Registered Trade Mark.
PracticeDump website is not related to, affiliated with, endorsed or authorized by Amazon. Trademarks, certification & product names are used for reference only and belong to Amazon.
PracticeDump offers only Probable Questions and Answers. PracticeDump offer learning materials and practice tests created by subject matter experts to assist and help learner prepare for those exams.
All Certification Brands used on the website are owned by the respective brand owners. PracticeDump does not own or claim any ownership on any of the brands. The site www.practicedump.com is in no way affiliated with SAP SE.