New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Isaca CISM Exam - Topic 5 Question 82 Discussion

Actual exam question for Isaca's CISM exam
Question #: 82
Topic #: 5
[All CISM Questions]

Which of the following is the MOST important reason to conduct interviews as part of the business impact analysis (BIA) process?

Show Suggested Answer Hide Answer
Suggested Answer: D

The most effective course of action when employees are using free cloud storage services to store company data through their mobile devices is to assess the business need to provide a secure solution, such as a corporate-approved cloud service or a virtual desktop environment. Assessing the business need can help understand why employees are using free cloud storage services, what kind of data they are storing, and what are the security risks and requirements. Based on the assessment, the security manager can propose a secure solution that meets the business needs and complies with the BYOD policy. The other options, such as allowing the practice to continue, disabling remote access, or initiating remote wipe, may not address the underlying business need or may cause disruption or data loss. Reference:

https://www.digitalguardian.com/blog/byod-security-expert-tips-policy-mitigating-risks-preventing-breach

https://news.microsoft.com/en-xm/2021/03/18/how-to-have-secure-remote-working-with-a-byod-policy/

https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/-infosec-guide-bring-your-own-device-byod


by Katie at Sep 11, 2024, 12:27 AM

Limited Time Offer

25%

Off

Get Premium CISM Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Gracia
3 months ago
A qualitative risk assessment is important too, though.
upvoted 0 times
...
Nicolette
3 months ago
Surprised that people overlook option B, awareness is crucial!
upvoted 0 times
...
Elmira
3 months ago
But isn't option C more about accountability?
upvoted 0 times
...
Derick
4 months ago
Totally agree, more input means better analysis!
upvoted 0 times
...
Emelda
4 months ago
I think option D is key for gathering diverse insights.
upvoted 0 times
...
Hubert
4 months ago
I practiced a similar question, and I remember that qualitative assessments are important, so option A could also be a contender.
upvoted 0 times
...
Nobuko
4 months ago
I feel like ensuring stakeholders own the risks is key, so I might lean towards option C, but I need to think more about it.
upvoted 0 times
...
Franklyn
4 months ago
I'm not entirely sure, but I remember something about increasing awareness being important too. Maybe option B?
upvoted 0 times
...
Alica
5 months ago
I think option D makes sense because getting input from various stakeholders is crucial for a comprehensive BIA.
upvoted 0 times
...
Charlene
5 months ago
I'm a bit unsure on this one. I know the interviews are important for the BIA, but I'm not sure which of these options is the most critical reason. I'll need to re-read the question and think it through.
upvoted 0 times
...
Danilo
5 months ago
Okay, I've got this. The most important reason is to ensure the stakeholders providing input own the related risk. The interviews are about getting buy-in and accountability, not just information gathering.
upvoted 0 times
...
Kallie
5 months ago
Hmm, this is a tricky one. I think the key is to focus on the primary objective of the BIA interviews, rather than secondary benefits. I'll need to weigh the options carefully.
upvoted 0 times
...
Erick
5 months ago
This question seems straightforward, but I want to make sure I understand the key purpose of the BIA interviews. I'll need to carefully review the options to determine the most important reason.
upvoted 0 times
...
Iluminada
5 months ago
Okay, let me see here. The question mentions Varnish for full page caching, so I'm guessing this attribute has something to do with how Magento interacts with Varnish. I'll need to review my knowledge of Varnish and Magento's caching strategies.
upvoted 0 times
...
Emmanuel
10 months ago
Option A? Really? I thought this was supposed to be about the BIA, not a risk assessment. Gotta stay focused, folks!
upvoted 0 times
Talia
8 months ago
D) To obtain input from as many relevant stakeholders as possible
upvoted 0 times
...
Callie
8 months ago
C) To ensure the stakeholders providing input own the related risk
upvoted 0 times
...
Dorothea
9 months ago
A) To facilitate a qualitative risk assessment following the BIA
upvoted 0 times
...
...
Nguyet
10 months ago
Haha, the correct answer is obviously C. After all, what's the point of a BIA if the stakeholders don't own the related risk?
upvoted 0 times
Lea
9 months ago
I agree with you, C is definitely a key factor in conducting interviews for the BIA process.
upvoted 0 times
...
Willie
9 months ago
I see your point, but I still believe C is the most important reason. Stakeholders owning the risk is crucial.
upvoted 0 times
...
Margart
9 months ago
I think the correct answer is actually D. We need input from as many stakeholders as possible.
upvoted 0 times
...
...
Mabel
10 months ago
I'm going with B. Increasing security awareness among key stakeholders is a great way to strengthen the overall process.
upvoted 0 times
Ranee
9 months ago
C) To ensure the stakeholders providing input own the related risk
upvoted 0 times
...
Laurel
9 months ago
B) To increase awareness of information security among key stakeholders
upvoted 0 times
...
Frederick
10 months ago
A) To facilitate a qualitative risk assessment following the BIA
upvoted 0 times
...
...
Stephane
10 months ago
D seems like the way to go. The more input you can get from relevant stakeholders, the better your BIA will be.
upvoted 0 times
Herman
9 months ago
User 2: Definitely, the more perspectives we have, the better we can assess the risks and impacts.
upvoted 0 times
...
Darrel
10 months ago
User 1: I agree, getting input from as many stakeholders as possible is crucial for a comprehensive BIA.
upvoted 0 times
...
...
Simona
10 months ago
But wouldn't conducting interviews also help in ensuring the stakeholders providing input own the related risk?
upvoted 0 times
...
Dorthy
11 months ago
I agree with Isadora. It's crucial to gather diverse perspectives to ensure a comprehensive analysis.
upvoted 0 times
...
Jacinta
11 months ago
I think option C is the most important reason. Getting stakeholder buy-in is crucial for the BIA process to be effective.
upvoted 0 times
Sharen
9 months ago
Exactly, having a diverse range of perspectives can help identify potential threats and vulnerabilities.
upvoted 0 times
...
Paris
9 months ago
Yes, that's true. It's important to have a comprehensive view of the risks involved.
upvoted 0 times
...
Sena
9 months ago
But don't you think obtaining input from as many relevant stakeholders as possible is also important?
upvoted 0 times
...
Tanesha
10 months ago
I agree, getting stakeholder buy-in is key for the BIA process.
upvoted 0 times
...
...
Isadora
11 months ago
I think the most important reason is to obtain input from as many relevant stakeholders as possible.
upvoted 0 times
...

Save Cancel