Spring Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

  1. Home
  2. Discussions
  3. Isaca
  4. Isaca Certification
  5. CISM Discussions
  6. CISM Exam Topic 2 Question 16 Discussion

Isaca Certified Information Security Manager CISM Question # 16 Topic 2 Discussion

 Isaca Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Isaca Certified Information Security Manager CISM Question # 16 Topic 2 Discussion

CISM Exam Topic 2 Question 16 Discussion:
Question #: 16
Topic #: 2

An organization's information security manager is performing a post-incident review of a security incident in which the following events occurred:

• A bad actor broke into a business-critical FTP server by brute forcing an administrative password

• The third-party service provider hosting the server sent an automated alert message to the help desk, but was ignored

• The bad actor could not access the administrator console, but was exposed to encrypted data transferred to the server

• After three hours, the bad actor deleted the FTP directory, causing incoming FTP attempts by legitimate customers to fail

Which of the following could have been prevented by conducting regular incident response testing?
A.

Ignored alert messages

B.

The server being compromised

C.

The brute force attack

D.

Stolen data

Get Premium CISM Questions
Actual exam question for Isaca CISM exam by Zane6952 at Jan 19, 2026, 11:14:39 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next