Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Isaca CISM Exam - Topic 5 Question 82 Discussion

Actual exam question for Isaca's CISM exam
Question #: 82
Topic #: 5
[All CISM Questions]

Which of the following is the MOST important reason to conduct interviews as part of the business impact analysis (BIA) process?

Show Suggested Answer Hide Answer
Suggested Answer: D

The most effective course of action when employees are using free cloud storage services to store company data through their mobile devices is to assess the business need to provide a secure solution, such as a corporate-approved cloud service or a virtual desktop environment. Assessing the business need can help understand why employees are using free cloud storage services, what kind of data they are storing, and what are the security risks and requirements. Based on the assessment, the security manager can propose a secure solution that meets the business needs and complies with the BYOD policy. The other options, such as allowing the practice to continue, disabling remote access, or initiating remote wipe, may not address the underlying business need or may cause disruption or data loss. Reference:

https://www.digitalguardian.com/blog/byod-security-expert-tips-policy-mitigating-risks-preventing-breach

https://news.microsoft.com/en-xm/2021/03/18/how-to-have-secure-remote-working-with-a-byod-policy/

https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/-infosec-guide-bring-your-own-device-byod


by Katie at Sep 11, 2024, 12:27 AM

Limited Time Offer

25%

Off

Get Premium CISM Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Gracia
4 months ago
A qualitative risk assessment is important too, though.
upvoted 0 times
...
Nicolette
5 months ago
Surprised that people overlook option B, awareness is crucial!
upvoted 0 times
...
Elmira
5 months ago
But isn't option C more about accountability?
upvoted 0 times
...
Derick
5 months ago
Totally agree, more input means better analysis!
upvoted 0 times
...
Emelda
5 months ago
I think option D is key for gathering diverse insights.
upvoted 0 times
...
Hubert
6 months ago
I practiced a similar question, and I remember that qualitative assessments are important, so option A could also be a contender.
upvoted 0 times
...
Nobuko
6 months ago
I feel like ensuring stakeholders own the risks is key, so I might lean towards option C, but I need to think more about it.
upvoted 0 times
...
Franklyn
6 months ago
I'm not entirely sure, but I remember something about increasing awareness being important too. Maybe option B?
upvoted 0 times
...
Alica
6 months ago
I think option D makes sense because getting input from various stakeholders is crucial for a comprehensive BIA.
upvoted 0 times
...
Charlene
6 months ago
I'm a bit unsure on this one. I know the interviews are important for the BIA, but I'm not sure which of these options is the most critical reason. I'll need to re-read the question and think it through.
upvoted 0 times
...
Danilo
6 months ago
Okay, I've got this. The most important reason is to ensure the stakeholders providing input own the related risk. The interviews are about getting buy-in and accountability, not just information gathering.
upvoted 0 times
...
Kallie
6 months ago
Hmm, this is a tricky one. I think the key is to focus on the primary objective of the BIA interviews, rather than secondary benefits. I'll need to weigh the options carefully.
upvoted 0 times
...
Erick
6 months ago
This question seems straightforward, but I want to make sure I understand the key purpose of the BIA interviews. I'll need to carefully review the options to determine the most important reason.
upvoted 0 times
...
Iluminada
6 months ago
Okay, let me see here. The question mentions Varnish for full page caching, so I'm guessing this attribute has something to do with how Magento interacts with Varnish. I'll need to review my knowledge of Varnish and Magento's caching strategies.
upvoted 0 times
...
Emmanuel
11 months ago
Option A? Really? I thought this was supposed to be about the BIA, not a risk assessment. Gotta stay focused, folks!
upvoted 0 times
Talia
10 months ago
D) To obtain input from as many relevant stakeholders as possible
upvoted 0 times
...
Callie
10 months ago
C) To ensure the stakeholders providing input own the related risk
upvoted 0 times
...
Dorothea
10 months ago
A) To facilitate a qualitative risk assessment following the BIA
upvoted 0 times
...
...
Nguyet
11 months ago
Haha, the correct answer is obviously C. After all, what's the point of a BIA if the stakeholders don't own the related risk?
upvoted 0 times
Lea
10 months ago
I agree with you, C is definitely a key factor in conducting interviews for the BIA process.
upvoted 0 times
...
Willie
10 months ago
I see your point, but I still believe C is the most important reason. Stakeholders owning the risk is crucial.
upvoted 0 times
...
Margart
10 months ago
I think the correct answer is actually D. We need input from as many stakeholders as possible.
upvoted 0 times
...
...
Mabel
11 months ago
I'm going with B. Increasing security awareness among key stakeholders is a great way to strengthen the overall process.
upvoted 0 times
Ranee
10 months ago
C) To ensure the stakeholders providing input own the related risk
upvoted 0 times
...
Laurel
11 months ago
B) To increase awareness of information security among key stakeholders
upvoted 0 times
...
Frederick
11 months ago
A) To facilitate a qualitative risk assessment following the BIA
upvoted 0 times
...
...
Stephane
12 months ago
D seems like the way to go. The more input you can get from relevant stakeholders, the better your BIA will be.
upvoted 0 times
Herman
11 months ago
User 2: Definitely, the more perspectives we have, the better we can assess the risks and impacts.
upvoted 0 times
...
Darrel
11 months ago
User 1: I agree, getting input from as many stakeholders as possible is crucial for a comprehensive BIA.
upvoted 0 times
...
...
Simona
12 months ago
But wouldn't conducting interviews also help in ensuring the stakeholders providing input own the related risk?
upvoted 0 times
...
Dorthy
1 year ago
I agree with Isadora. It's crucial to gather diverse perspectives to ensure a comprehensive analysis.
upvoted 0 times
...
Jacinta
1 year ago
I think option C is the most important reason. Getting stakeholder buy-in is crucial for the BIA process to be effective.
upvoted 0 times
Sharen
10 months ago
Exactly, having a diverse range of perspectives can help identify potential threats and vulnerabilities.
upvoted 0 times
...
Paris
10 months ago
Yes, that's true. It's important to have a comprehensive view of the risks involved.
upvoted 0 times
...
Sena
10 months ago
But don't you think obtaining input from as many relevant stakeholders as possible is also important?
upvoted 0 times
...
Tanesha
11 months ago
I agree, getting stakeholder buy-in is key for the BIA process.
upvoted 0 times
...
...
Isadora
1 year ago
I think the most important reason is to obtain input from as many relevant stakeholders as possible.
upvoted 0 times
...

Save Cancel