New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Isaca CISM Exam - Topic 3 Question 3 Discussion

Actual exam question for Isaca's CISM exam
Question #: 3
Topic #: 3
[All CISM Questions]

A business unit uses e-commerce with a strong password policy. Many customers complain that they cannot remember their password because they are too long and complex. The business unit states it is imperative to improve the customer experience. The information security manager should FIRST.

Show Suggested Answer Hide Answer
Suggested Answer: C

by Brittni at May 09, 2022, 06:51 PM

Limited Time Offer

25%

Off

Get Premium CISM Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Mayra
4 months ago
Evaluating customer experience is key for revenue!
upvoted 0 times
...
Albina
4 months ago
Wait, changing the password policy? Isn't that risky?
upvoted 0 times
...
Aleshia
4 months ago
Two-factor authentication is the way to go!
upvoted 0 times
...
Alishia
4 months ago
But customers need to remember them too!
upvoted 0 times
...
Heidy
5 months ago
Strong passwords are a must for security!
upvoted 0 times
...
Celeste
5 months ago
Evaluating the impact on revenue sounds important, but I feel like we should address the password issue directly first.
upvoted 0 times
...
Shenika
5 months ago
Two-factor authentication seems like a solid option, but I wonder if it would actually help with the password memory issue.
upvoted 0 times
...
Micah
5 months ago
I think we practiced a similar question where alternative verification methods were suggested first. That might be a good approach here too.
upvoted 0 times
...
Frederic
5 months ago
I remember discussing the importance of balancing security and user experience, but I'm not sure if changing the password policy is the best first step.
upvoted 0 times
...
Graciela
5 months ago
I'm confident I know the key points about Oracle instance recovery. I'll select the options I'm sure about.
upvoted 0 times
...
Luann
5 months ago
Hmm, I'm a little unsure about this one. I know NTP is for time synchronization, but I'm not totally clear on the specifics of what the client is responsible for. I'll have to think this through carefully.
upvoted 0 times
...
Flo
5 months ago
I've studied this topic before, and I'm pretty confident that Firewall as a Service (FWaaS) is one of the Prisma Access security services. I'll go with option B.
upvoted 0 times
...
Thurman
5 months ago
This question is asking about the scope of an ISO/IEC 20000 audit, so I think the key is to focus on the management system and services that are in scope for certification.
upvoted 0 times
...
Franchesca
5 months ago
Okay, I think I've got this. The key is configuring OSPF virtual links to connect the two non-backbone areas. Option C looks like the right answer.
upvoted 0 times
...
Salena
5 months ago
Okay, let's see. We need to run a business-critical workload, so we can't just use preemptible VMs. Migrating to a Managed Instance Group (option B) could work, but I'm not sure if that would actually save us money. I think I'll go with option A and look into Committed Use Discounts.
upvoted 0 times
...

Save Cancel