Which of the following should be an information security manager ' s PRIMARY concern when an organization is expanding business to a new country?
When remote access to confidential information is granted to a vendor for analytic purposes, which of the following is the MOST important security consideration?
An organization ' s quality process can BEST support security management by providing:
Which is MOST important to identify when developing an effective information security strategy?
Which of the following would BEST enable senior management to integrate security into all organizational processes following an increase in cyberattacks on business applications?
Which of the following BEST helps to ensure a risk response plan will be developed and executed in a timely manner?
The MOST appropriate time to conduct a disaster recovery test would be after:
Which of the following would be MOST important to include in communications to customers impacted by an information security incident?
Which of the following should be the PRIMARY focus of an organization with immature incident detection capabilities?
The PRIMARY goal of the eradication phase in an incident response process is to:
Application data integrity risk is MOST directly addressed by a design that includes:
Which of the following risks is an example of risk transfer?
At what point should risk ownership be assigned?
Which of the following should be the PRIMARY objective of the information security incident response process?
Which of the following is the MOST effective way to determine the alignment of an information security program with the business strategy?
When defining a security baseline, it is MOST important that the baseline:
Senior management has expressed concern that the organization ' s intrusion prevention system (IPS) may repeatedly disrupt business operations Which of the following BEST indicates that the information security manager has tuned the system to address this concern?
Without prior approval, a training department enrolled the company in a free cloud-based collaboration site and invited employees to use it. Which of the following is the BEST response of the information security manager?
Before approving the implementation of a new security solution, senior management requires a business case. Which of the following would BEST support the justification for investment?
Which of the following is the PRIMARY benefit of an information security awareness training program?