- Home
- ISACA
- ISACA Advanced in AI Security Management (AAISM) Exam
- ISACA.AAISM.v2026-06-22.q109
- Question 4
Valid AAISM Dumps shared by EduDump.com for Helping Passing AAISM Exam! EduDump.com now offer the newest AAISM exam dumps, the EduDump.com AAISM exam questions have been updated and answers have been corrected get the newest EduDump.com AAISM dumps with Test Engine here:
Access AAISM Dumps Premium Version
(432 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 4/109
A security assessment revealed that attackers could access sensitive company data through chat interface injection. What is the BEST mitigation?
Correct Answer: C
AAISM explains that prompt injection attacks are best mitigated by:
* strict input validation
* templated prompts
* controlled context windows
* guardrail enforcement
These prevent malicious instructions from overriding system prompts.
Audits (A) are periodic, not preventive. Manual review (B) is not scalable. Monitoring (D) detects issues but does not block injection.
References: AAISM Study Guide - Prompt Injection & Input Control Mechanisms.
* strict input validation
* templated prompts
* controlled context windows
* guardrail enforcement
These prevent malicious instructions from overriding system prompts.
Audits (A) are periodic, not preventive. Manual review (B) is not scalable. Monitoring (D) detects issues but does not block injection.
References: AAISM Study Guide - Prompt Injection & Input Control Mechanisms.
- Question List (109q)
- Question 1: Which of the following will BEST reduce data bias in machine...
- Question 2: The PRIMARY purpose of adopting and implementing AI architec...
- Question 3: An organization is deploying a large language model (LLM) an...
- Question 4: A security assessment revealed that attackers could access s...
- Question 5: An organization has requested a developer to apply AI algori...
- Question 6: Which of the following recommendations would BEST help a ser...
- Question 7: Which of the following is the MOST likely cause of model dri...
- Question 8: Within an incident handling process, which of the following ...
- Question 9: Which of the following is the MOST important consideration f...
- Question 10: Which of the following is the MOST important consideration w...
- Question 11: An organization utilizes AI-enabled mapping software to plan...
- Question 12: An automotive manufacturer uses AI-enabled sensors on machin...
- Question 13: Which area of intellectual property law presents the GREATES...
- Question 14: Which of the following is the MOST effective action an organ...
- Question 15: What BEST protects trade secrets related to AI technologies ...
- Question 16: After deployment, an AI model's output begins to drift outsi...
- Question 17: Which of the following strategies is the MOST effective way ...
- Question 18: Which of the following is the GREATEST benefit of performing...
- Question 19: Which of the following BEST ensures AI components are valida...
- Question 20: A large financial institution is integrating a third-party A...
- Question 21: An organization is deploying an automated AI cybersecurity s...
- Question 22: An attacker crafts inputs to a large language model (LLM) to...
- Question 23: When implementing a generative AI system, which of the follo...
- Question 24: An organization is implementing AI agent development across ...
- Question 25: An organization has discovered that employees have started r...
- Question 26: Which of the following factors is MOST important for preserv...
- Question 27: Secure aggregation enhances federated learning security by:...
- Question 28: An organization decides to use an anomaly-based intrusion de...
- Question 29: A financial institution plans to deploy an AI system to prov...
- Question 30: Which of the following is the MAIN objective of the operatio...
- Question 31: Which of the following metrics BEST evaluates the ability of...
- Question 32: Which of the following types of data is used to tune hyperpa...
- Question 33: An AI research team is developing a natural language process...
- Question 34: An aerospace manufacturer prioritizing accuracy and security...
- Question 35: Which of the following BEST strengthens information security...
- Question 36: Which of the following would MOST effectively ensure an orga...
- Question 37: When robust input controls cannot prevent prompt injections ...
- Question 38: When creating a use case for an AI model that provides sensi...
- Question 39: Which BEST addresses hallucination risk in AI systems?...
- Question 40: As organizations increasingly rely on vendors to develop AI ...
- Question 41: A global organization has experienced multiple incidents of ...
- Question 42: In the context of generative AI, which of the following woul...
- Question 43: Which of the following BEST describes how supervised learnin...
- Question 44: A CISO must provide KPIs for the organization's newly deploy...
- Question 45: Embedding unique identifiers into AI models would BEST help ...
- Question 46: Which of the following controls BEST mitigates the risk of b...
- Question 47: Which of the following is the BEST approach for minimizing r...
- Question 48: An organization uses an AI tool to scan social media for pro...
- Question 49: Which of the following is the BEST control for preventing de...
- Question 50: Which of the following is the BEST reason to immediately dis...
- Question 51: The PRIMARY reason to conduct a privacy impact assessment (P...
- Question 52: Which of the following is the MAIN objective of the operatio...
- Question 53: Which of the following is the MOST important course of actio...
- Question 54: An aerospace manufacturing company that prioritizes accuracy...
- Question 55: Which testing technique is BEST for determining how an AI mo...
- Question 56: An organization implementing an LLM application sees unexpec...
- Question 57: Which of the following information is MOST important to incl...
- Question 58: Which of the following technologies can be used to manage de...
- Question 59: An organization plans to apply an AI system to its business,...
- Question 60: To ensure ethical and responsible AI use, which AI usage pol...
- Question 61: Which of the following should be the MOST important consider...
- Question 62: An organization decides to contract a vendor to implement a ...
- Question 63: A large financial services organization is integrating a thi...
- Question 64: An organization recently introduced a generative AI chatbot ...
- Question 65: A global organization experienced multiple incidents of staf...
- Question 66: An organization is implementing AI agent development across ...
- Question 67: Which of the following approaches BEST enables the separatio...
- Question 68: Which of the following would MOST effectively obtain ongoing...
- Question 69: Which of the following is the PRIMARY purpose of a dedicated...
- Question 70: Which of the following is the MOST effective use of AI in in...
- Question 71: Which of the following BEST describes the role of model card...
- Question 72: Employees are regularly using open-source generative AI with...
- Question 73: Which of the following BEST describes an adversarial attack ...
- Question 74: Which of the following BEST describes an adversarial attack ...
- Question 75: Which of the following is the MOST effective way to prevent ...
- Question 76: Which of the following employee awareness topics would MOST ...
- Question 77: Which of the following is the BEST way to reduce the risk of...
- Question 78: An organization implementing a large language model (LLM) ap...
- Question 79: Which of the following is the MOST critical success factor f...
- Question 80: Within an incident handling process, which of the following ...
- Question 81: A financial services firm received a regulatory fine after a...
- Question 82: The PRIMARY goal of data poisoning attacks is to:...
- Question 83: An organization concerned about the ethical and responsible ...
- Question 84: An organization is evaluating a SaaS-based HR system that us...
- Question 85: After implementing a third-party generative AI tool, an orga...
- Question 86: Which of the following should be the PRIMARY objective of im...
- Question 87: How can an organization best remain compliant when decommiss...
- Question 88: Which of the following is the GREATEST concern when a vendor...
- Question 89: An organization deploying an LLM is concerned input manipula...
- Question 90: Which of the following security framework elements BEST help...
- Question 91: Which of the following mitigation control strategies would B...
- Question 92: An organization is designing an AI-based credit risk assessm...
- Question 93: Which attack type is MOST likely to cause model drift?...
- Question 94: The PRIMARY ethical concern of generative AI is that it may:...
- Question 95: Which AI data management technique involves creating validat...
- Question 96: What BEST ensures a proper business continuity plan (BCP) fo...
- Question 97: Which AI model is BEST suited to ensure explainability in an...
- Question 98: Which of the following MOST effectively addresses bias in ge...
- Question 99: Which of the following controls would BEST help to prevent d...
- Question 100: Which of the following is the MOST critical key risk indicat...
- Question 101: An organization plans to use AI to analyze the shopping patt...
- Question 102: An AI system that supports critical processes has deviated f...
- Question 103: An organization is looking to purchase an AI application fro...
- Question 104: Which of the following is the MOST effective way to identify...
- Question 105: A data scientist creating categories and training an algorit...
- Question 106: A financial organization relies on AI-based identity verific...
- Question 107: A financial organization is concerned about AI data poisonin...
- Question 108: Which of the following should be the PRIMARY objective of im...
- Question 109: A financial organization uses AI to detect potential fraudul...
