CISM Exam Dumps - Certified Information Security Manager

Validate the effectiveness of implemented security controls.

Track the trending of information security incidents.

Review the results of information security awareness testing.

Benchmark the information security policy against industry standards.

Ensuring residual risk is within appetite

Ensuring the application inventory is updated

Ensuring a cost-benefit analysis is completed

Ensuring senior management is aware of associated risk

Enforce passwords and data encryption on the devices.

Review and update existing security policies.

Require remote wipe capabilities for devices

Conduct security awareness training.

To estimate the recovery time objective (RTO)

To provide metrics ta senior management

To assess service level agreements (SLAs)

To evaluate how personnel react to the situation

Block the end user's ability to use shadow IT.

Determine the extent of shadow IT usage.

Determine the value of shadow IT projects.

Update the security policy to address shadow IT.

timeliness in responding to attacks.

level of support from senior management.

compliance with industry regulations.

key performance indicators (KPIs).

Discuss the issue with senior management for direction.

Validate whether the control is operating as intended.

Remove the control and identify alternatives.

Conduct user awareness training.

Performing business impact analyses (BIA)

Updating the risk register

Monitoring key risk indicators (KRIs)

Monitoring key goal indicators (KGls)

increase compliance.

understand intrusion methods.

modify behavior.

reduce negative audit findings.

Reporting content

Communication channel

Reporting frequency

Target audience

Disaster recovery drills

Penetration tests

Tabletop exercises

Forensics certification

Security policy requirements

Level of protection

Value to the business

Ownership of information

The ability to reduce risk in the supply chain

The ability to define service level agreements (SLAs)

The ability to meet industry compliance requirements

The ability to improve vendor performance

Maintain a flexible approach to mitigate potential risk to unsupported systems.

Compare configurations between supported and unsupported systems.

Minimize the operational burden of managing and monitoring unsupported systems.

Control vulnerabilities and reduce threats from changed configurations.

The CIO is not taking charge of the committee.

There is a conflict of interest between the business and IT.

The committee lacks sufficient business representation.

The committee consists of too many senior executives.

SWOT analysis

Balanced scorecard

Cost-benefit analysis

Industry benchmarks

Amount of infection-related downtime

Number of virus infections detected

Average recovery time per incident

Number of downtime-related help desk calls

Wipe the affected system.

isolate the impacted endpoints.

Notify senior management

Notify internal legal counsel.

Vulnerability assessments

The level of exposure

The level of inherent risk

Threat assessments

provide effective triage and containment of the incident.

remove the threat and restore affected systems.

maintain a strict chain of custody.

obtain forensic evidence from the affected system.

System criticalities

Threat profiles

Vulnerability scores

Risk matrices

Input from data owners is included in the requirements definition.

A right to audit clause is included in the contract.

The conversion has been approved by the information security team.

Data encryption is used in the cloud hosting solution.

normal network behavior and using it as a baseline for measuring abnormal activity.

abnormal network behavior and issuing instructions to the firewall to drop rogue connections.

abnormal network behavior and using it as a baseline for measuring normal activity.

attack pattern signatures from historical data.

The incident response team

Affected customers

Senior management

Cloud service provider

Auditing compliance with the information security policy

Promoting the information security mission within the enterprise

Enforcing strict technical information security controls

Developing procedures to enforce the information security policy

Business leaders receive annual information security awareness training.

Security policies are reviewed and approved by the chief information officer (CIO).

The security strategy is reviewed and approved by the organization’s steering committee,

The organization's board of directors includes a dedicated information security advisor..

Gap analysis results

Risk assessment results

Risk register

Heat map

Retention schedules

Organizational risk

System access specifications

Definitions of responsibilities

Implementing a security awareness training program for employees

Deploying a consistent incident response approach

Implementing a security information and event management (SIEM) tool

Deploying intrusion detection tools in the network environment

A simulated denial of service (DoS) attack against the firewall

A validation of the current firewall rule set

A port scan of the firewall from an internal source

A ping test from an external source

Enforcing configurations for secure logging and audit trails on server systems

Enforcing standard system configurations based on secure configuration benchmarks

Implementing network and system-based anomaly monitoring software for server systems.

Implementing host-based intrusion detection systems (IDS) on server systems

Calculate the exposure factor.

Perform a cost-benefit analysis.

Conduct a business impact analysis (BIA).

Conduct a risk assessment

Calculating cost of the incident

Performing an impact analysis

Conducting a postmortem assessment

Preserving the evidence

Activate the incident response program.

Validate the risk to the organization.

Perform a business impact analysis (BIA).

Notify local law enforcement agencies of a breach.

Improving the protection of information

Achieving organizational objectives

Minimizing the cost of security controls

Reducing organizational security risk

Remove all signs of the intrusion from the OS and application.

Restore the OS, patches, and application from a backup.

Restore the application and data from a forensic copy.

Install the OS, patches, and application from the original source.

Perform a gap analysis to determine needed resources.

Perform a vulnerability assessment.

Assess the risk to business operations.

Create a security exception.

increasing budget and staffing levels for the incident response team.

testing the business continuity plan (BCP).

implementing an intrusion detection system (IDS).

revalidating and mitigating risks to an acceptable level.

Providing information security policy training to the process owners

Identifying risks in the processes and managing those risks

Ensuring that key controls are embedded in the processes

Allocating sufficient resources

Gathering evidence

Performing a risk assessment

Eradicating the incident

Containing the incident

Ensuring human safety

Identifying critical business processes

Ensuring the reliability of backup data

Securing critical information assets

The cost to align to Company A's security policies

The organizational structure of Company B

Company A's security architecture

Company B's security policies

Communicate security policy with the third-party vendor.

Ensure security is involved in the procurement process.

Conduct an information security audit on the third-party vendor.

Review the third-party contract with the organization's legal department.

Apply the latest patch programs to the production operating systems.

Implement controls for continuous monitoring of middleware transactions.

Set up an agent to run a virus-scanning program across platforms.

Ensure that proper controls exist for code review and release management.

Deploying a security information and event management system

(SIEM)

Conducting regular system administrator awareness training

Deploying an intrusion prevention system (IPS)

Implementing a data loss prevention (DLP) suite

Evaluate the cost of information security integration.

Assess the business objectives of the processes.

Identify information security risk associated with the processes.

Benchmark the processes with best practice to identify gaps.

Guidelines

Automated controls

Standards

Security policies

Key performance objectives and budget trends

Security awareness training participation and residual risk exposures

Risk analysis results and key risk indicators (KRIs)

Information security risk management plans and control compliance

Perform business impact analyses (BIAS).

Monitor the treatment of information security risk.

Oversee the execution of the information security strategy

Manage the implementation of the information security plan.

Benchmarking against industry peers

Prioritization of action plans

Validation of current capabilities

Identification of threats and vulnerabilities

the basis for setting control objectives

used to establish security investments.

needed to estimate risk.

elements of the organization's security posture

reduction of the annual loss expectancy (ALE).

time to closure of incidents.

number of employees receiving incident response training.

number of incidents detected.

To keep policy documents from becoming too large

To keep policies from having to be changed too frequently

To ensure that individual documents do not contain conflicting information

To ensure policies receive the appropriate approvals

Increase the frequency of log monitoring and analysis.

Increase the sensitivity of intrusion detection systems.

Implement multi-factor authentication.

Implement a security information and event management system

relates the investment to the organization's strategic plan

articulates management's intent and information security directives in clear language.

translates information security policies and standards into business requirements.

realigns information security objectives to organizational strategy.