NIST-COBIT-2019 ISACA Implementing the NIST Cybersecurity Framework using COBIT 2019 Free Demo Questions – Try Before You Buy

Question 1

Which of the following is a framework principle established by NIST as an initial framework consideration?

A

Avoiding business risks

B

Impact on global operations

C

Ensuring regulatory compliance

Correct Answer: C

Explanation:

One of the framework principles established by NIST is to ensure that the framework is consistent and aligned with existing regulatory and legal requirements that are relevant to cybersecurity12. Reference: 1: Cybersecurity Framework | NIST 2: Framework Documents | NIST

Question 2

Which of the following functions provides foundational activities for the effective use of the Cybersecurity Framework?

A

Protect

B

Identify

C

Detect

Correct Answer: B

Explanation:

The Identify function provides foundational activities for the effective use of the Cybersecurity Framework, because it assists in developing an organizational understanding of managing cybersecurity risk to systems, people, assets, data, and capabilities12. This understanding enables an organization to focus and prioritize its efforts, consistent with its risk management strategy and business needs12. The Identify function includes outcome categories such as Asset Management, Business Environment, Governance, Risk Assessment, Risk Management Strategy, and Supply Chain Risk Management12. Reference: 1: The Five Functions | NIST 2: Getting Started with the NIST Cybersecurity Framework: A Quick Start Guide

Question 3

Which of the following is an input to COBIT Implementation Phase 1: What Are the Drivers?

A

Risk response document

B

Current capability rating for selected processes

C

Program wake-up call

Correct Answer: C

Explanation:

A program wake-up call is an input to COBIT Implementation Phase 1: What Are the Drivers, because it is a trigger event that creates a sense of urgency and a need for change in the organization’s governance and management of enterprise I & T 1 2 . A program wake-up call can be internal or external, positive or negative, such as a major incident, a new regulation, a strategic initiative, or a stakeholder feedback 3 4 .
References: 1 : COBIT 2019 Implementation Guide 2 : COBIT 2019 Implementation - ISACA 3 : Tips for Implementing COBIT in a Continuously Changing Environment - ISACA 4 : 7 Phases of COBIT Implementation:

Demo ISACA NIST-COBIT-2019 Exam Questions

Which of the following is a framework principle established by NIST as an initial framework consideration?

Avoiding business risks

Impact on global operations

Ensuring regulatory compliance

Correct Answer: C

One of the framework principles established by NIST is to ensure that the framework is consistent and aligned with existing regulatory and legal requirements that are relevant to cybersecurity12. Reference: 1: Cybersecurity Framework | NIST 2: Framework Documents | NIST

Which of the following functions provides foundational activities for the effective use of the Cybersecurity Framework?

Protect

Identify

Detect

Correct Answer: B

Which of the following is an input to COBIT Implementation Phase 1: What Are the Drivers?

Risk response document

Current capability rating for selected processes

Program wake-up call

Correct Answer: C

Demo Practice Mode