exam questions

Exam CISM All Questions

View all questions & answers for the CISM exam

Exam CISM topic 1 question 343 discussion

Actual exam question from Isaca's CISM
Question #: 343
Topic #: 1
[All CISM Questions]

Which of the following is the MOST effective way to detect information security incidents?

  • A. Establishing proper policies for response to threats and vulnerabilities
  • B. Performing regular testing of the incident response program
  • C. Providing regular and up-to-date training for the incident response team
  • D. Educating end users on threat awareness and timely reporting
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Eruza89
3 months, 4 weeks ago
I would go with answer B. Answer D is more about prevention than detection
upvoted 1 times
...
Salilgen
6 months, 3 weeks ago
Selected Answer: D
Answer should be "D". The key word in the question is "detect" incidents. A. speaks to incident response (not detection). B. again speaks to response (not detection). C. again speaking to incident response (not detection). D. "threat awareness and timely reporting" speaks to detection.
upvoted 1 times
...
jcisco123
8 months, 3 weeks ago
Selected Answer: B
End-user education primarily enhances awareness and reporting, but it relies heavily on the vigilance and knowledge of individuals, which can vary greatly and may not always be reliable. Regular testing helps identify gaps in the incident response program, including detection capabilities. Testing ensures not only that incidents are detected but also that the organisation is ready to respond effectively.
upvoted 1 times
...
iTmarcus
9 months, 1 week ago
Regular testing of the incident response program, including simulations and exercises, is a proactive and systematic approach to assessing the effectiveness of an organization's ability to detect and respond to security incidents. This testing helps identify weaknesses, strengths, and areas for improvement in the incident detection and response process. Option B
upvoted 3 times
...
richck102
1 year, 2 months ago
Selected Answer: D
D. Educating end users on threat awareness and timely reporting
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago