The entity that is ultimately responsible for security governance is:
CISM Chapter 1
Professional Development
•10 Qs
Similar activities
M4-Q1
Professional Development
•10 Qs
Estándares
Professional Development
•10 Qs
" IT SECURITY & CYBER CRIMES"
Professional Development
•10 Qs
Practical Introduction to CMMI (PRE-TEST)
Professional Development
•10 Qs
Introduction to IT - 03. Security & Software Development
Professional Development
•10 Qs
Post-Test COBIT 2019 Foundation
Professional Development
•10 Qs
Malware Security
Professional Development
•15 Qs
Data Ice Breaker
Professional Development
•12 Qs
CISM Chapter 1
Quiz
•
Professional Development
•
Professional Development
•
Hard
Anna Löfgren
Used 9+ times
FREE Resource
10 questions
Show all answers
1.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
Chief information officer
Chief information security officer
Board of directors
Chief risk officer
Answer explanation
Correct answer:
"Board of directors"
The organization’s board of directors is ultimately responsible for security
governance.
2.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
An acceptable use policy is likely to contain all of the following except:
Rules regarding the use of personally owned assets
Permitted uses of corporate assets
Data retention requirements
Protection of sensitive information
Answer explanation
Correct answer:
"Data retention requirements"
An acceptable use policy (AUP) is likely to contain statements about the use
of corporate assets, personally owned assets, and information protection. Data
retention requirements are not likely to be included.
3.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
The best definition of governance is:
Corporate policies and procedures
Management control of business functions
Regular reporting of metrics and key performance indicators (KPIs)
Formal roles and responsibilities documented in a RACI chart
Answer explanation
Correct answer:
"Management control of business functions"
Governance is best defined as management’s control over business functions
throughout an organization.
4.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
Under what circumstances would an organization elect to disregard a regulation and pay fines instead of complying?
The cost of the fines is less than the cost of compliance.
The cost of compliance is less than the cost of fines.
Management elected to transfer the risk.
Management elected to avoid the risk.
Answer explanation
Correct answer:
"The cost of the fines is less than the cost of compliance."
While choosing to pay fines in lieu of compliance is uncommon, it is the best answer among the choices listed.
5.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
A database administrator (DBA) is typically responsible for all of the following except which one?
Database performance tuning
Database troubleshooting
Database capacity management
Database design
Answer explanation
Correct answer:
"Database design"
The role of database design is generally shared between the DBA and software developers/architects or is owned entirely by software developers or architects.
6.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
What is the most appropriate person or group to determine applicability of a cybersecurity-related regulation?
Chief information security officer (CISO)
Chief legal counsel
Chief information risk officer (CIRO)
Security governance committee
Answer explanation
Correct answer:
"Chief legal counsel"
Only legal counsel should be determining applicability of potentially relevant laws and regulations.
None of the other is an appropriate party to interpret regulations.
7.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
A business executive has delegated responsibility for granting access requests to the IT department. The IT department in this role is functioning as the:
Accountable
Owner
Custodian
User
Answer explanation
Correct answer is:
"Custodian"
IT is acting as a custodian in the access request process for the business application.
The business executive remains accountable for the operation. The business executive continues in the role of the system owner. IT is not the user.
Create a free account and access millions of resources
Create resources
Host any resource
Get auto-graded reports
Microsoft
Apple
Others
Similar Resources on Quizizz
10 questions
Process of Security Design
Quiz
•
Professional Development
10 questions
Part 1 SU 1.6
Quiz
•
Professional Development
10 questions
NCR-MO-143 sUAS Safety & Risk Management
Quiz
•
6th Grade - Professio...
10 questions
CISM Domain 3
Quiz
•
Professional Development
10 questions
Game ka na Ba?
Quiz
•
Professional Development
10 questions
CGEIT Domain 2 MCQ (Additional)
Quiz
•
Professional Development
10 questions
Cyber Security Fundamental - RK
Quiz
•
Professional Development
11 questions
Information Classification and Handling Quiz
Quiz
•
Professional Development
Popular Resources on Quizizz
15 questions
Character Analysis
Quiz
•
4th Grade
17 questions
Chapter 12 - Doing the Right Thing
Quiz
•
9th - 12th Grade
10 questions
American Flag
Quiz
•
1st - 2nd Grade
20 questions
Reading Comprehension
Quiz
•
5th Grade
30 questions
Linear Inequalities
Quiz
•
9th - 12th Grade
20 questions
Types of Credit
Quiz
•
9th - 12th Grade
18 questions
Full S.T.E.A.M. Ahead Summer Academy Pre-Test 24-25
Quiz
•
5th Grade
14 questions
Misplaced and Dangling Modifiers
Quiz
•
6th - 8th Grade