1
Q
Policies
A
High Level statements about the behavior and management intent.
2
Q
Standards
A
Statements about boundaries
3
Q
Procedures
A
Operating procedures
4
Q
Guidelines
A
Helpful for use with procedures and new technologies
5
Q
Types of Controls
A
IT Controls
Non IT Controls
Countermeasures
Layered- Defenses - Defense in depth
6
Q
Types of Layered- Defenses - Defense in depth
A
Prevention Containment Detection and notification Reaction Evidence collection and tracking Recovery and restoration
CISM 1.0 - ISACA
flashcards
Decks in class (22)
# Cards
-
CISM Self Assessment 1 - 15th Edition10
-
DOMAIN 1—INFORMATION SECURITY GOVERNANCE (24%)63
-
domain 2 - Information Risk Management (30%)0
-
A-Overview17
-
B- Business Alignment16
-
C-Board of Directors and Strategy21
-
D1 Responsibilities31
-
D2 Responsibilities24
-
E- Monitoring Responsibilities and Metrics30
-
F. Business Model for Information Security (BMIS)20
-
G. Zachman Framework13
-
H. Security Strategy Development.9
-
I. Control Frameworks14
-
Definition6
-
J. Risks Objectives14
-
1-Risk Management Concept6
-
CISM Definitions168
-
Exam Misses71
-
CISM Audible Exam Quiz Phil Martin10
-
CISM Vocabulary95
-
CISM24
-
Questions9
