GOVERNANCE - Compiled notes - Exam practise flash
40 important questions on GOVERNANCE - Compiled notes - Exam practise flash
Which interconnection connects the people and organization design and strategy elements in the business model for information security (BMIS)
Which role should review and provide input to security strategy and requirements for effective business support
Which role identifies emerging risks and identifies compliance issues
- Higher grades + faster learning
- Never study anything twice
- 100% sure, 100% understanding
For my 1st exam I got a C. Then, I started looking for ways to learn better and I came across Study Smart. Since then I have scored a A+, A, A- and another A. I highly recommend it to everyone who wants to hear it. I am so happy with it!!
I was struggling to finish all my first-year subjects for 3 years. Then I discovered Study Smart, which helped me to finish all of them within 3 months.
Because of StudySmart, things are going well in many ways. Before, I always had study stress and no time for anything. Now I feel calm and confident (because of the program). I used to score a B, now I usually score an A or A+.
Hey Chris, I really want to thank you very much for developing the platform, I usually got around C for my exams, now I scored an A+, an A and a A- !!
Since using Study Smart, my average has increased significantly. I even completed a statistics course with a A+ while I'm bad at statistics. I took on extra courses this year, because of Study Smart. Thanks so much!
Ever since I started studying with StudySmart I passed all my exams !!! No more re-sits!! At first, I was happy with a pass and now I only get good grades. Many thanks!
I aced all the courses I studied with Study Smart. For law, I first scored a D, and now an A! I’m 100% sure that I’ll pass all the courses I study with Study Smart.
I always thought I studied well. My grades were fine. I could never have imagined that applying these study skills would have such a huge and direct impact on my grades, my speed and the pleasure I have in learning.
For the first time, I finally feel totally confident about the way I learn. I have the perfect overview and make great progress in terms of speed and the grades I get. Thanks, Chris!
I immediately started to enjoy learning again, and my grades soared. All of a sudden, everything went better. I highly recommend Study Smart to all students..
Being able to create my materials online made the process of studying so much smoother and quicker. I no longer have to spend a huge amount of my time on creating my summaries.
At first, my notes were a mess. Now I use Study Smart to take my notes in a perfectly structured way. It helps me to save a lot of time and do other things I enjoy.
Students that study with Study Smart get better grades. The system applies all the learning methods in such a way that both well-performing students and students who struggle perform much better.
Hi Chris, I would like to thank you very much. Last year I scored C on a course, and this year I got an A+ thanks to your method! Thank you very much!
The largest effect is that my child is more enthusiastic about school! Every parent wants their children to be happy at school, Study Smart made it happen.
In high school, I failed several exams, and that has really changed now. I actually needed this tool very much back then. Since I started studying with StudySmart, I haven't had any D's. My average score is now an A and those are results I would have never had in the past
With my old method, I passed only 3 out of 8 courses. Since I started taking my notes digitally in Study Smart, I have passed all my courses on the first try. For me, StudySmart takes away the stress of wondering if I will pass or not.
Thanks to StudySmart, I passed all my exams, and with better grades than before! On top of that, I have mastered a very good study method now, which I am confident will help me earn my degree.
Which interconnection connects the Process and Technology elements in the business model for information security (BMIS)
Which role monitors regulatory compliance
Which component in GRC is the process that records and monitors the policies, procedures and controls needed to ensure that policies and standards are followed
Which main personnel participants should begin the process of the information security strategy development
Senior management, steering committee and CISO or information security manager
Which role establishes the acceptable risk and tolerances
From which document is the business case usually derived
Which role should institute processes to integrate security with business objectives
To which group should the information security manager present an overall strategy for information security to obtain approval
What are the 4 components of the GRC capability Model
Learn
Align
Perform
Review
Which roles are responsible for due care and managing risk
What is the purpose of a RACI chart
Which interconnection connects People and Process in BMIS
Which interconnection connects People and Technology in BMIS
What is the difference between a role and a responsibilty
A role is a designation assigned by virtue of job function
Responsibility is a is a description of some function related to a role
Which role should demonstrate alignment of security and business objectives
Which role ensures that risk and business impact assessments are conducted
What is meant by acceptable risk or risk appetite
Which term is used for the protection measures that directly reduce a vulnerability or threat
What are the four elements of the business model for information security
Organization design and strategy
People
Process
Technology
What are the 5 elements of COBIT 5
- Meeting stakeholder needs
- Covering the enterprise end-to-end
- Applying a single, integrated framework
- Enabling a holistic approach
- Separating governance from management
What is the purpose of a business case
Which role should evaluate and report on the degree of alignment
According to ISACA, what are the basic six outcomes of a security program that is developed from information security governance
Strategic Alignment
Risk Management
Value delivery
Resource Optimization
Performance measurement
What is the first step in establishing information security governance
Which component in GRC is the responsibly of senior management and the board of directors, and focuses on creating mechanisms to ensure that personnel follow established processes and policies?
What is the best way to convince senior management to do more than just comply with regulations?
Which enterprise architectural framework enables communication of information to personnel in a manner that is most useful to each group's responsibilities?
Which outcome of security governance ensures that the information security initiative supports organizational objectives?
What is the biggest challenge for a CISO when doing a security assessment to determine state of security program in a company
Who are responsible for having proper security controls in place for systems
Who are responsible for ensuring systems are included in relevant policies?
Which role is responsible for overseeing that all security project align with the information security strategy?
Steering committee
Which organizational role is responsible for protecting the data they are responsible
Where is information security governance in part derived from?
What are the initial requirements for developing a security strategy?
Fluctuating value of an asset. Where should the expenditure for security be based on?
2 Companies merge. Different retention periods. Regulation & Internal. Which retention period does need to be kept after the merger?
The question on the page originate from the summary of the following study material:
- A unique study and practice tool
- Never study anything twice again
- Get the grades you hope for
- 100% sure, 100% understanding
