Isaca Certified Information Security Manager CISM Question # 194 Topic 20 Discussion

CISM Exam Topic 20 Question 194 Discussion:

Question #: 194

Topic #: 20

An organization engages a third-party vendor to monitor and support a financial application under scrutiny by regulators. Which of the following controls would MOST effectively manage risk to the organization?

Implementing separation of duties between systems and data

Including penalty clauses for noncompliance in the vendor contract

Disabling vendor access and only re-enabling when access is needed

Monitoring key risk indicators (KRIs)

Get Premium CISM Questions

Actual exam question for Isaca CISM exam by Rael4588 at Jan 19, 2026, 2:20:28 AM

Contribute your Thoughts:

Chosen Answer: A B C D
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

New Year Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

Isaca Certified Information Security Manager CISM Question # 194 Topic 20 Discussion

Isaca Certified Information Security Manager CISM Question # 194 Topic 20 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

New Year Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

Isaca Certified Information Security Manager CISM Question # 194 Topic 20 Discussion

Isaca Certified Information Security Manager CISM Question # 194 Topic 20 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Awaiting moderator approval