ISACA Advanced in AI Security Management (AAISM) (AAISM) - Isaca Actual Exam Questions
Last updated on April 30, 2026
An attack has occurred on an AI system that has been in use for two years. Which of the following would BEST mitigate the impact of the attack?
Monitoring AI systems for suspicious activities
Updating deployed training data with new adversarial data
Replacing the AI model with a new model that hides confidence levels
Implementing strict access controls to the model’s architecture
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
Which of the following BEST ensures AI components are validated as part of disaster recovery testing?
Disconnecting primary model training clusters to test retraining workflow during extended outages
Simulating denial of service (DoS) attacks against AI APIs to evaluate detection capabilities
Running simulated data loss scenarios by erasing test records from the AI system’s feature store
Monitoring model performance metrics during failover and recovery to assess system stability
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
A financial organization relies on AI-based identity verification and fraud detection services. Which of the following BEST integrates AI security risk into the business continuity plan (BCP)?
Using explainable AI to document decision paths
Periodic retraining using pre-labeled data
Including AI model supporting infrastructure in disaster recovery scenarios
Duplicating AI microservices across multiple availability zones
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
Which of the following BEST ensures AI components are validated during disaster recovery testing?
Running simulated data-loss scenarios by deleting test feature-store records
Disconnecting model training clusters to test retraining workflows
Simulating DoS attacks on AI APIs
Monitoring model performance during failover and recovery
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
Which of the following is the MOST serious consequence of an AI system correctly guessing the personal information of individuals and drawing conclusions based on that information?
The exposure of personal information may result in litigation
The publicly available output of the model may include false or defamatory statements about individuals
The output may reveal information about individuals or groups without their knowledge
The exposure of personal information may lead to a decline in public trust
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
Finish Practice?
Are you sure you want to finish? This will end your practice session.