CISM • Timed Practice Test 4
This is a timed practice session. You have 10 minutes to answer 10 questions — approximately 1 minute per question, matching real CISM exam pace. Answer every question before time expires.
Time remaining
10:00
Exam-pace drill
Allow 1 minute per question. On the real CISM exam you have approximately 72 seconds per question — this session trains you to maintain that pace under pressure.
A multinational corporation is implementing a risk-based approach to information security governance. The chief information security officer (CISO) has been asked to prioritize security initiatives based on business impact. Which of the following actions should the CISO take FIRST to align security governance with business objectives?