ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISM All Questions

View all questions & answers for the CISM exam
Go to Exam

Exam CISM topic 1 question 832 discussion

Actual exam question from Isaca's CISM
Question #: 832
Topic #: 1
[All CISM Questions]

Which of the following should an information security manager do FIRST when noncompliance with security standards is identified?

  • A. Validate the noncompliance
  • B. Include the noncompliance in the risk register
  • C. Report the noncompliance to senior management
  • D. Implement compensating controls to mitigate the noncompliance
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by richck102 at July 11, 2023, 2:55 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Josef4CISM
1 month, 2 weeks ago
Selected Answer: A
Its a vague question. I assume that "identified" means that the security manager has detected an event that needs further validation / conformation. Therefore, I go with A.
upvoted 1 times
...
blehbleh
8 months ago
Selected Answer: A
A. You have to still validate the extent of noncompliance and what all it entails. This will guide further decisions.
upvoted 2 times
...
Uncle_Lucifer
8 months, 3 weeks ago
Selected Answer: D
Mitigating Controls
upvoted 1 times
...
richck102
1 year, 1 month ago
Selected Answer: A
A. Validate the noncompliance
upvoted 1 times
Uncle_Lucifer
8 months, 3 weeks ago
why validate non compliance after it has been identified. It is already identified, i see no reason for validating it again.
upvoted 3 times
ats20
5 months, 3 weeks ago
i agree, why validation when it is identified. although D seems relevant, the question did not mention difficult to implement which to lead with compensating control. vague, but i'll go with D.
upvoted 1 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago