New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

Free and Premium Isaca NIST-COBIT-2019 Dumps Questions Answers

ISACA Implementing the NIST Cybersecurity Framework using COBIT 2019 Questions and Answers

Question 1

Which CSF step corresponds to the COBIT objective of knowledge and understanding of enterprise goals?

Options:

A.

Step 1: Prioritize and Scope

B.

Step 6: Determine, Analyze, and Prioritize Gaps

C.

Step 4: Conduct a Risk Assessment

Buy Now
Question 2

What does a CSF Informative Reference within the CSF Core provide?

Options:

A.

A high-level strategic view of the life cycle of an organization's management of cybersecurity risk

B.

A group of cybersecurity outcomes tied to programmatic needs and particular activities

C.

Specific sections of standards, guidelines, and practices that illustrate a method to achieve an associated outcome

Question 3

Which of the following is the PRIMARY reason for establishing open communication between all participants and stakeholders as part of the implementation phase?

Options:

A.

To describe the high-level roadmap for achieving the vision

B.

To ensure issues can be identified and resolved

C.

To establish the sharing of information with external partners

Question 4

When coordinating framework implementation, the business/process level collaborates with the implementation/operations level to:

Options:

A.

develop the risk management framework.

B.

assess changes in current and future risks.

C.

create the framework profile.

Question 5

Which of the following COBIT tasks and activities corresponds to CSF Step 1: Prioritize and Scope?

Options:

A.

Understand the enterprise's capacity and capability for change.

B.

Use change agents to communicate informally and formally.

C.

Determine ability to implement the change.

Question 6

During the implementation of Step 2: Orient and Step 3: Create a Current Profile, the organization's asset register should primarily align to:

Options:

A.

organizational strategy.

B.

configuration management.

C.

the security business case.

Question 7

The PRIMARY function of COBIT Implementation Phase 7: How Do We Keep the Momentum Going is to provide an opportunity for which of the

following?

Options:

A.

Closing the loop for communication workflow

B.

Documenting improvements in a prioritized action plan

C.

Ensuring frequent stakeholder communication

Question 8

Which of the following functions provides foundational activities for the effective use of the Cybersecurity Framework?

Options:

A.

Protect

B.

Identify

C.

Detect

Question 9

Analysis is one of the categories within which of the following Core Functions?

Options:

A.

Detect

B.

Respond

C.

Recover

Question 10

How should gaps identified between the current and target profiles be addressed?

Options:

A.

Comparing to and acting on the desired Tier level

B.

With a full project engagement to close all gaps

C.

Through a risk based-approach

Question 11

Which of the following is a PRIMARY input into Steps 2 and 3: Orient and Create a Current Profile?

Options:

A.

Evaluating business cases

B.

Updating business cases

C.

Defining business cases

Question 12

Which of the following represents a best practice for completing CSF Step 3: Create a Current Profile?

Options:

A.

Procuring solutions that are cost-effective and fit the organization's technical architecture

B.

Assessing current availability, performance, and capacity to create a baseline

C.

Engaging in a dialogue and obtaining input to determine appropriate goals, tiers, and

Activities

Question 13

In which CSF step should an enterprise document its existing category and subcategory outcome achievements?

Options:

A.

Step 1: Prioritize and Scope

B.

Step 3: Create a Current Profile

C.

Step 4: Conduct a Risk Assessment

Question 14

Which of the following is one of the objectives of CSF Step 6: Determine, Analyze and Prioritize Gaps?

Options:

A.

Translate improvement opportunities into justifiable, contributing projects.

B.

Direct stakeholder engagement, communication, and reporting.

C.

Communicate the I&T strategy and direction.

Question 15

An organization is concerned that there will be resistance in attempts to close gaps between the current and target profiles. Which of the following is the

BEST approach to gain support for the process?

Options:

A.

Implement organization-wide training on the CSF.

B.

Communicate management opinions regarding the project.

C.

Identify quick wins for implementation first.