New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Isaca CISA Exam - Topic 4 Question 34 Discussion

Actual exam question for Isaca's CISA exam
Question #: 34
Topic #: 4
[All CISA Questions]

Which of the following provides the MOST comprehensive understanding of an organizations information security posture?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Dean at May 04, 2022, 12:55 PM

Limited Time Offer

25%

Off

Get Premium CISA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Franklyn
4 months ago
Wait, are we really saying risk metrics are the best?
upvoted 0 times
...
Jerry
4 months ago
Security incident trends are super important too!
upvoted 0 times
...
Luke
4 months ago
Vulnerability assessments show current weaknesses.
upvoted 0 times
...
Winifred
4 months ago
I think external audit findings are more reliable.
upvoted 0 times
...
Chaya
5 months ago
Risk management metrics give a full picture.
upvoted 0 times
...
Karan
5 months ago
Security incident trends could be really telling, but I’m torn between that and risk management metrics. They both seem important!
upvoted 0 times
...
Elin
5 months ago
Vulnerability assessments seem crucial, but I feel like they only show part of the security posture. What about ongoing incidents?
upvoted 0 times
...
Yesenia
5 months ago
I remember a practice question where external audit findings were highlighted as important, but I wonder if they really capture the whole picture.
upvoted 0 times
...
Margurite
5 months ago
I think risk management metrics might give a broad view, but I'm not entirely sure if they cover everything.
upvoted 0 times
...
Dorothy
5 months ago
I think I've got a handle on this. The key is understanding how the WLAN signal is layered across the 10 floors. If it's 5,6 layered, then the answer is True. Let me double-check my work, but I feel confident about this one.
upvoted 0 times
...
Solange
5 months ago
Hmm, this looks like a tricky one. I'll need to carefully review the summarization configuration and the more specific routes received by R1.
upvoted 0 times
...
Lino
5 months ago
Option D sounds like the most logical answer to me. The internal audit plan should focus on engagements that can add value to the organization.
upvoted 0 times
...
Earnestine
5 months ago
Hmm, I'm a bit confused on this. I thought selfdestruct always sent ether to the address specified, regardless of the fallback function. I'll have to think this through more carefully.
upvoted 0 times
...
Jannette
5 months ago
I feel like this question was on a practice exam. Didn't we discuss how the Change Initiator usually suggests changes?
upvoted 0 times
...

Save Cancel