New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Isaca CISM Exam - Topic 3 Question 43 Discussion

Actual exam question for Isaca's CISM exam
Question #: 43
Topic #: 3
[All CISM Questions]

Which of the following is MOST useful when prioritizing information security initiatives?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Mari at May 09, 2022, 02:44 AM

Limited Time Offer

25%

Off

Get Premium CISM Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Hoa
4 months ago
I thought cost of noncompliance was the top priority!
upvoted 0 times
...
Hortencia
4 months ago
Penetration testing results can be misleading sometimes.
upvoted 0 times
...
Lang
4 months ago
Wait, are we really saying cost of noncompliance matters less?
upvoted 0 times
...
Wayne
4 months ago
Totally agree, senior management input is crucial too.
upvoted 0 times
...
Arlyne
5 months ago
Risk assessment results are key for prioritizing!
upvoted 0 times
...
Whitley
5 months ago
Penetration testing results seem relevant, but I wonder if they provide enough insight compared to the broader picture from risk assessments.
upvoted 0 times
...
Tarra
5 months ago
I feel like cost of noncompliance might be a strong contender, but I can't recall if it outweighs the importance of risk assessments.
upvoted 0 times
...
Anissa
5 months ago
I remember we discussed how risk assessment results are crucial for prioritizing security initiatives, but I'm not entirely sure if they are the most useful.
upvoted 0 times
...
Domingo
5 months ago
I think input from senior management is important too, especially since they can provide context on business priorities.
upvoted 0 times
...
Elouise
5 months ago
I feel pretty confident about this. I'll work through the calculations step-by-step and select the correct answer.
upvoted 0 times
...
Nidia
5 months ago
I'm not entirely sure about this one. I'll need to carefully read through the policy details and think through the logic step-by-step to make sure I get the right answer.
upvoted 0 times
...
Tammara
5 months ago
I recall something about Cisco APIC determining the roots, but I'm a bit fuzzy on whether it's automatic or manual configuration.
upvoted 0 times
...
Stacey
5 months ago
I'm not totally sure about this one. I'll try to eliminate the options that don't make sense and then make an educated guess.
upvoted 0 times
...

Save Cancel