Isaca CISM Exam - Topic 3 Question 112 Discussion

Actual exam question for Isaca's CISM exam

Question #: 112
Topic #: 3

[All CISM Questions]

Which of the following is MOST important to the successful implementation of an information security program?

AAdequate security resources are allocated to the program.

BKey performance indicators (KPIs) are defined.

CA balanced scorecard is approved by the steering committee.

DThe program is developed using global security standards.

Show Suggested Answer

Suggested Answer: A

The successful implementation of an information security program depends largely on the availability and allocation of adequate security resources, such as budget, staff, technology, and training. Without sufficient resources, the program may not be able to achieve its objectives, comply with the security strategy, or address the security risks. Key performance indicators (KPIs), a balanced scorecard, and global security standards are also important elements of an information security program, but they are not as critical as the resource allocation.

Reference= CISM Review Manual, 16th Edition, page 69

by Evan at May 12, 2026, 03:43 PM

Limited Time Offer

25%

Off

Get Premium CISM Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Jerrod

16 days ago

I think option A makes the most sense since without adequate resources, nothing can really be implemented effectively.

upvoted 0 times

...