[New Updated Questions ] Where to find the newest Isaca CISM exam dumps? if you want to pass exam Isaca CISM without the second try, you should download the latest updated Isaca CISM Dump for preparing. Now visit Flydumps.com to get free pdf study guide with valid Isaca https://www.leads4pass.com/cism.html exam dumps and free vce dumps, which will help you passing quickly!
QUESTION 1
Which of the following should be the FIRST step in developing an information security plan?
A. Perform a technical vulnerabilities assessment
B. Analyze the current business strategy
C. Perform a business impact analysis
D. Assess the current levels of security awareness
Correct Answer: B Explanation
Explanation/Reference:
Explanation: Prior to assessing technical vulnerabilities or levels of security awareness, an information security manager needs to gain an understanding of the current business strategy and direction. A business impact analysis should be performed prior to developing a business continuity plan, but this would not be an appropriate first step in developing an information security strategy because it focuseson availability.