CISM_Questions_with_Linebreaks Flashcards
What is one of the benefits of effective information security governance?
A. Reduction of IT department responsibilities
B. Increased predictability and reduced uncertainty of business operations
C. Improved budget allocation to IT projects
D. Simplified vendor management
B. Increased predictability and reduced uncertainty of business operations
Why must senior management be accountable for information security governance?
A. To enforce strict IT policies
B. To ensure information security governance integrates with enterprise governance
C. To manage IT budgets effectively
D. To oversee technical system configurations
B. To ensure information security governance integrates with enterprise governance
Strategic alignment in information security governance ensures that:
A. Security solutions are compatible with enterprise processes
B. IT infrastructure is updated regularly
C. Employee cybersecurity training is prioritized
D. Regulatory compliance takes precedence
A. Security solutions are compatible with enterprise processes
What is a hallmark of value delivery in information security governance?
A. Frequent updates to compliance checklists
B. Cost-effective, standardized security solutions
C. Universal implementation of all security controls
D. Increased budget for security technologies
B. Cost-effective, standardized security solutions
Why is assurance process integration important in information security governance?
A. To limit overlaps in responsibilities among assurance functions
B. To provide external auditors with actionable metrics
C. To ensure no gaps exist in protection across assurance functions
D. To establish independent cybersecurity governance
C. To ensure no gaps exist in protection across assurance functions