exam questions

Exam CISM All Questions

View all questions & answers for the CISM exam

Exam CISM topic 1 question 42 discussion

Actual exam question from Isaca's CISM
Question #: 42
Topic #: 1
[All CISM Questions]

Which of the following is the MOST important step when establishing guidelines for the use of social networking sites in an organization?

  • A. Identify secure social networking sites
  • B. Establish disciplinary actions for noncompliance
  • C. Perform a vulnerability assessment
  • D. Define acceptable information for posting
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Viperhunter
3 months, 3 weeks ago
Selected Answer: D
Defining acceptable information for posting is crucial to set clear expectations and boundaries for employees when using social networking sites on behalf of or in association with the organization. This step helps mitigate the risks associated with inappropriate sharing of sensitive or confidential information, ensuring that employees understand what types of content are acceptable and align with the organization's policies. While the other options (identifying secure social networking sites, establishing disciplinary actions for noncompliance, and performing a vulnerability assessment) may also be important considerations, defining acceptable information for posting is foundational to creating effective and secure guidelines for social networking use within the organization.
upvoted 1 times
...
oluchecpoint
6 months, 2 weeks ago
D While the other options (A, B, and C) are important considerations, defining what information is acceptable for posting is foundational because it sets the tone and boundaries for how employees should use social networking sites in a manner that aligns with the organization's security, legal, and reputation management objectives. Once these guidelines are established, identifying secure social networking sites, establishing disciplinary actions, and performing vulnerability assessments can all follow as complementary steps in the organization's social media governance strategy.
upvoted 1 times
...
Azurefox79
7 months, 1 week ago
Selected Answer: D
D. any time you see disciplinary action in an answer it is not correct. That is building a bad culture in which people are afraid to speak up and is against the CISM exams' intentions.
upvoted 1 times
...
jennarink13
8 months, 2 weeks ago
D. Haven't seen any ISACA questions with disciplinary actions as the answer.
upvoted 1 times
...
richck102
10 months ago
D. Define acceptable information for posting
upvoted 1 times
...
Seasondream
11 months, 1 week ago
guidelines are not mandatory so disciplinary action wouldn't be the right answer with B. You can define and recommend what to post though.
upvoted 4 times
...
vavofa5697
1 year, 1 month ago
Selected Answer: D
D. To ensure that employees understand what kind of information is appropriate to share on social networking sites and what types of information should be kept confidential. This can help to reduce the risk of data breaches, maintain the trust of customers and stakeholders, and comply with legal and ethical standards for protecting information.
upvoted 1 times
...
vavofa5697
1 year, 1 month ago
D. To ensure that employees understand what kind of information is appropriate to share on social networking sites and what types of information should be kept confidential. This can help to reduce the risk of data breaches, maintain the trust of customers and stakeholders, and comply with legal and ethical standards for protecting information.
upvoted 1 times
...
CarlLimps
1 year, 1 month ago
Selected Answer: D
D. You can't have non-compliance with establishing acceptable use policy. Besides, use a carrot before a stick!
upvoted 1 times
...
Broesweelies
1 year, 1 month ago
Selected Answer: D
clearly it is D
upvoted 1 times
...
Clinderman
1 year, 1 month ago
Selected Answer: B
Every guideline I have ever seen includes penalties for non-compliance such as "Termination". I don't believe it's possible to list every single piece of acceptable information to post.
upvoted 1 times
...
STUDYER2
1 year, 1 month ago
Selected Answer: D
d - define accept use for user
upvoted 2 times
...
Antonivs
1 year, 1 month ago
Selected Answer: B
B and D. Disciplinary is more important in my opinion
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago