Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISM All Questions

View all questions & answers for the CISM exam
Go to Exam

Exam CISM topic 1 question 819 discussion

Actual exam question from Isaca's CISM
Question #: 819
Topic #: 1
[All CISM Questions]

Which of the following methods is the BEST way to demonstrate that an information security program provides appropriate coverage?

  • A. Gap assessment
  • B. Vulnerability scan report
  • C. Maturity assessment
  • D. Security risk analysis
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Pabl0T0rrez at May 22, 2023, 3:40 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
Booict
3 months, 3 weeks ago
Selected Answer: D
D - provides a broader evaluation of the entire information security program. It measures the program’s current state against predefined criteria or best practices, offering a comprehensive view of its effectiveness and coverage. This holistic approach is more suitable for demonstrating that the program provides appropriate coverage.
upvoted 1 times
...
oluchecpoint
1 year, 2 months ago
Selected Answer: D
D. Security Risk Analysis. Security risk analysis assesses the organization's overall security posture by identifying and analyzing risks. It evaluates the effectiveness of security controls and their alignment with business objectives. A well-conducted security risk analysis provides a comprehensive view of the security program's coverage and its ability to address the organization's specific risks and threats. It is considered the most comprehensive and strategic method for demonstrating appropriate coverage.
upvoted 2 times
...
richck102
1 year, 4 months ago
C. Maturity assessment
upvoted 2 times
...
Dopy
1 year, 5 months ago
Selected Answer: C
a maturity assessment is the BEST way to demonstrate that an information security program provides appropriate coverage as the risk analysis feeds into the maturity assessment
upvoted 3 times
...
Jae_kes
1 year, 5 months ago
Selected Answer: C
C. Maturity assessment
upvoted 3 times
...
wello
1 year, 5 months ago
Selected Answer: D
a security risk analysis is the BEST method to demonstrate that an information security program provides appropriate coverage as it comprehensively assesses risks, vulnerabilities, and associated controls to ensure adequate protection of information assets.
upvoted 4 times
...
Pabl0T0rrez
1 year, 6 months ago
??? C. maturity assessment - the best way to demonstrate that an information security program provides appropriate coverage. A security risk analysis is an assessment of the risks to an organization's information assets.
upvoted 3 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel