1 / 11

ISO IEC 27002 - Lead Implementer ISO-IEC-LI Exam Questions

PassQuestion provides the latest ISO IEC 27002 - Lead Implementer ISO-IEC-LI Exam Questions to help you in every possible way to clear the exam on your first attempt.

examquestionsonline
Download Presentation

ISO IEC 27002 - Lead Implementer ISO-IEC-LI Exam Questions

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. ISO-IEC-LI Free Questions ISO-IEC-LI Free Questions ISO / IEC 27002 - Lead Implementer ISO / IEC 27002 - Lead Implementer https://www.passquestion.com/ https://www.passquestion.com/ISO-IEC-LI ISO-IEC-LI.html .html

  2. Question 1 Question 1 What is the most important reason for applying the segregation of duties? What is the most important reason for applying the segregation of duties? A. Segregation of duties makes it clear who is responsible for what. A. Segregation of duties makes it clear who is responsible for what. B. Segregation of duties ensures that, when a person is absent, it can be investigated B. Segregation of duties ensures that, when a person is absent, it can be investigated whether he or she has been committing fraud. whether he or she has been committing fraud. C. Tasks and responsibilities must be separated in order to minimize the opportunities for C. Tasks and responsibilities must be separated in order to minimize the opportunities for business assets to be misused or changed, whether the change be unauthorized or business assets to be misused or changed, whether the change be unauthorized or unintentional. unintentional. D. Segregation of duties makes it easier for a person who is ready with his or her part of D. Segregation of duties makes it easier for a person who is ready with his or her part of the work to take time off or to take over the work of another person. the work to take time off or to take over the work of another person. Answer: C Answer: C

  3. Question 2 Question 2 Why is compliance important for the reliability of the information? Why is compliance important for the reliability of the information? A. Compliance is another word for reliability. So, if a company indicates that it is A. Compliance is another word for reliability. So, if a company indicates that it is compliant, it means that the information is managed properly. compliant, it means that the information is managed properly. B. By meeting the legislative requirements and the regulations of both the government B. By meeting the legislative requirements and the regulations of both the government and internal management, an organization shows that it manages its information in a and internal management, an organization shows that it manages its information in a sound manner. sound manner. C. When an organization employs a standard such as the ISO/IEC 27002 and uses it C. When an organization employs a standard such as the ISO/IEC 27002 and uses it everywhere, it is compliant and therefore it guarantees the reliability of its information. everywhere, it is compliant and therefore it guarantees the reliability of its information. D. When an organization is compliant, it meets the requirements of privacy legislation and, D. When an organization is compliant, it meets the requirements of privacy legislation and, in doing so, protects the reliability of its information. in doing so, protects the reliability of its information. Answer: B Answer: B

  4. Question 3 Question 3 What is the best way to comply with legislation and regulations for personal data What is the best way to comply with legislation and regulations for personal data protection? protection? A. Performing a threat analysis A. Performing a threat analysis B. Maintaining an incident register B. Maintaining an incident register C. Performing a vulnerability analysis C. Performing a vulnerability analysis D. Appointing the responsibility to someone D. Appointing the responsibility to someone Answer: D Answer: D

  5. Question 4 Question 4 What is an example of a non-human threat to the physical environment? What is an example of a non-human threat to the physical environment? A. Fraudulent transaction A. Fraudulent transaction B. Corrupted file B. Corrupted file C. Storm C. Storm D. Virus D. Virus Answer: C Answer: C

  6. Question 5 Question 5 Who is accountable to classify information assets? Who is accountable to classify information assets? A. the CEO A. the CEO B. the CISO B. the CISO C. the Information Security Team C. the Information Security Team D. the asset owner D. the asset owner Answer: D Answer: D

  7. Question 6 Question 6 A company moves into a new building. A few weeks after the move, a visitor appears A company moves into a new building. A few weeks after the move, a visitor appears unannounced in the office of the director. An investigation shows that visitors passes unannounced in the office of the director. An investigation shows that visitors passes grant the same access as the passes of the company's staff. grant the same access as the passes of the company's staff. Which kind of security measure could have prevented this? Which kind of security measure could have prevented this? A. physical security measure A. physical security measure B. An organizational security measure B. An organizational security measure C. A technical security measure C. A technical security measure Answer: A Answer: A

  8. Question 7 Question 7 ISO 27002 provides guidance in the following area ISO 27002 provides guidance in the following area A. PCI environment scoping A. PCI environment scoping B. Information handling recommendations B. Information handling recommendations C. Framework for an overall security and compliance program C. Framework for an overall security and compliance program D. Detailed lists of required policies and procedures D. Detailed lists of required policies and procedures Answer: C Answer: C

  9. Question 8 Question 8 Which is a legislative or regulatory act related to information security that can be imposed upon all Which is a legislative or regulatory act related to information security that can be imposed upon all organizations? organizations? A. ISO/IEC 27001:2005 A. ISO/IEC 27001:2005 B. Intellectual Property Rights B. Intellectual Property Rights C. ISO/IEC 27002:2005 C. ISO/IEC 27002:2005 D. Personal data protection legislation D. Personal data protection legislation Answer: D Answer: D

  10. Question 9 Question 9 Which of the following measures is a preventive measure? Which of the following measures is a preventive measure? A. Installing a logging system that enables changes in a system to be recognized A. Installing a logging system that enables changes in a system to be recognized B. Shutting down all internet traffic after a hacker has gained access to the B. Shutting down all internet traffic after a hacker has gained access to the company systems company systems C. Putting sensitive information in a safe C. Putting sensitive information in a safe D. Classifying a risk as acceptable because the cost of addressing the threat is D. Classifying a risk as acceptable because the cost of addressing the threat is higher than the value of the information at risk higher than the value of the information at risk Answer: C Answer: C

  11. Question 10 Question 10 Which of these reliability aspects is "completeness" a part of? Which of these reliability aspects is "completeness" a part of? A. Availability A. Availability B. Exclusivity B. Exclusivity C. Integrity C. Integrity D. Confidentiality D. Confidentiality Answer: C Answer: C

More Related