ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISM All Questions

View all questions & answers for the CISM exam
Go to Exam

Exam CISM topic 1 question 46 discussion

Actual exam question from Isaca's CISM
Question #: 46
Topic #: 1
[All CISM Questions]

Which of the following is the MOST effective method of preventing deliberate internal security breaches?

  • A. Well-designed intrusion detection system (IDS)
  • B. Biometric security access control
  • C. Well-designed firewall system
  • D. Screening prospective employees
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Broesweelies at Jan. 15, 2023, 1:21 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Broesweelies
Highly Voted 12 months ago
Selected Answer: D
D. Screening prospective employees is the MOST effective method of preventing deliberate internal security breaches. This is because a thorough screening process can help to identify potential security risks before they are hired, such as a history of malicious or unethical behavior. Additionally, by conducting background checks, verifying credentials, and checking references, an organization can gain a better understanding of a candidate's qualifications and trustworthiness, which can help to reduce the risk of an internal security breach. Other methods such as firewalls, intrusion detection systems, and biometric security access control help to secure the perimeter and monitor for unauthorized access, but can't prevent a malicious insider who already has access to the systems.
upvoted 6 times
...
Viperhunter
Most Recent 1 month, 3 weeks ago
Selected Answer: D
Screening prospective employees thoroughly before hiring is a crucial step in preventing deliberate internal security breaches. Background checks, reference checks, and a comprehensive vetting process help organizations identify potential employees with a history of dishonesty, criminal behavior, or other factors that could pose a risk to security. While options like a well-designed intrusion detection system (IDS), biometric security access control, and a well-designed firewall system are important components of an overall security strategy, they are primarily focused on detecting and preventing unauthorized access or external threats. Screening prospective employees addresses the human element and helps ensure that individuals with malicious intentions are less likely to be granted access to sensitive information and systems within the organization.
upvoted 1 times
...
Nickprata
1 month, 3 weeks ago
Selected Answer: A
Screening is one time activity. It will sotp disgruntled employee to harm the network. Therefore strong IDS is best option to detect.
upvoted 1 times
AlexJacobson
1 month, 1 week ago
IDS doesn't stop anything, it only reports. IPS does the stopping. But even then, the BEST answer here is background screening.
upvoted 1 times
...
...
Patt70
4 months, 2 weeks ago
Answer is D. Employee screening is very important along with other technical elements that helps preventing internal threat.
upvoted 1 times
...
odus1
5 months ago
D. answer doesn't make sense. You can screen employees to know their past behavior but can't predict future behaviors. That's why we need a layered security control to prevent rogue employee or error. C option is better
upvoted 1 times
...
richck102
8 months ago
C. Well-designed firewall system
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago