Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CISM Cybrary Vocab > Lot 4 > Flashcards

Lot 4 Flashcards

1
Q

A description of a particular way of accomplishing something that is less
prescriptive than a procedure

A

Guideline -

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

A study to prioritize the criticality of information resources for the
organization based on costs (or consequences) of adverse events. In an impact
analysis, threats to assets are identified and potential business losses determined for
different time periods

A

Impact analysis -

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Any event that is not part of the standard operation of a service and that
causes, or may cause, an interruption to, or a reduction in, the quality of that service

A

Incident -

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

The response of an enterprise to a disaster or other significant
event that may significantly affect the enterprise, its people or its ability to function
productively. An incident response may include evacuation of a facility, initiating a
disaster recovery plan (DRP), performing damage assessment and any other measures
necessary to bring an enterprise to a more stable status

A

Incident response -

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

The set of responsibilities and practices exercised
by the board and executive management with the goal of providing strategic direction,
ensuring that objectives are achieved, ascertaining that risks are managed appropriately,
and verifying that the enterprise’s resources are used responsibly

A

Information security governance -

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

The overall combination of technical, operational, and
procedural measures, and management structures implemented to provide for the
confidentiality, integrity, and availability of information based on business requirements
and risk analysis

A

Information security program -

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

The accuracy, completeness, and validity of information

A

Integrity -

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

The responsibility of executives and the board of directors; consists of
the leadership, organizational structures and processes that ensure that the enterprise’s
IT sustains and extends the organization’s strategies and objectives

A

IT governance -

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

A measure that tells management, after the fact, whether an
IT process has achieved its business requirements; usually expressed in terms of
information criteria

A

Key goal indicator (KGI) -

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

A measure that determines how well the process is
performing in enabling the goal to be reached. A KPI is a lead indicator of capability,
practices, and skills. It measures an activity goal, which is an action that the process
owner must take to achieve effective process performance

A

Key performance indicator (KPI) -

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

CISM Cybrary Vocab (7 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions