ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISM All Questions

View all questions & answers for the CISM exam
Go to Exam

Exam CISM topic 1 question 1041 discussion

Actual exam question from Isaca's CISM
Question #: 1041
Topic #: 1
[All CISM Questions]

Which of the following approaches to communication with senior management BEST enables an information security manager to maximize the effectiveness of the information security program?

  • A. Reporting on industry security threats with potential impact to business objectives
  • B. Conducting periodic one-on-one meetings to align security with business objectives
  • C. Participating in operational review meetings to discuss daily operations and dependencies
  • D. Providing regular status of updates to security policies and standards
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by jcisco123 at Jan. 26, 2024, 10:35 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
SHERLOCKAWS
3 weeks, 5 days ago
Selected Answer: A
Correct answer is A: Reporting on industry security threats with potential impact to business objectives. Because it connects security to business risk, which is exactly what CISM teaches is most effective for engaging leadership. About B. Conducting periodic one-on-one meetings to align security with business objectives. This sounds great in theory, but it’s not as scalable or impactful plus that one-on-ones may not reach the full senior management team.
upvoted 1 times
...
bronay
6 months ago
Selected Answer: A
A. Reporting threat
upvoted 1 times
...
Jay2021aws
8 months, 3 weeks ago
A. Reporting on industry security threats with potential impact to business objectives. This approach keeps senior management informed about relevant external threats that could affect the organization's business objectives, allowing them to make informed decisions about resource allocation and risk mitigation strategies. It demonstrates the proactive stance of the information security manager in addressing potential risks to the organization's operations and aligns the information security program with the broader business goals and priorities. Therefore, choice A is the most effective approach in this context.
upvoted 1 times
jcisco123
8 months, 1 week ago
Option B allows personalised discussions and direct alignment of security efforts with the organisation's strategic goals.
upvoted 1 times
...
helg420
5 months, 1 week ago
A: is mostly one way communication i.e. reporting which isn't IMO maximizing the effectiveness like two way discussions in B.
upvoted 1 times
...
...
jcisco123
9 months ago
Selected Answer: B
B. Conducting periodic one-on-one meetings to align security with business objectives
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago