Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISM All Questions

View all questions & answers for the CISM exam
Go to Exam

Exam CISM topic 1 question 649 discussion

Actual exam question from Isaca's CISM
Question #: 649
Topic #: 1
[All CISM Questions]

Which of the following should be done FIRST when developing an information security program?

  • A. Establish security policies.
  • B. Define the security strategy.
  • C. Approve security standards.
  • D. Set security baselines.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by ec2bdb1 at Jan. 22, 2024, 9:38 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
ServerBrain
1 month ago
Selected Answer: B
Define the security strategy, this strategy is linked to business goals.
upvoted 2 times
...
ec2bdb1
9 months, 4 weeks ago
Selected Answer: A
The question mentions "while developing security program". Security strategy is developed before program and serves as the base for security program.
upvoted 1 times
Marcelus1714
9 months, 2 weeks ago
question says "when", no "while"...
upvoted 3 times
...
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel