- (Topic 5)
The process for management approval of the security certification process which states the risks and mitigation of such risks of a given IT system is called
Correct Answer:
C
- (Topic 5)
SCENARIO: Critical servers show signs of erratic behavior within your organization’s intranet. Initial information indicates the systems are under attack from an outside entity. As the Chief Information Security Officer (CISO), you decide to deploy the Incident Response Team (IRT) to determine the details of this incident and take action according to the information available to the team.
During initial investigation, the team suspects criminal activity but cannot initially prove or disprove illegal actions. What is the MOST critical aspect of the team’s activities?
Correct Answer:
D
- (Topic 2)
Which of the following activities results in change requests?
Correct Answer:
A
- (Topic 2)
The executive board has requested that the CISO of an organization define and Key Performance Indicators (KPI) to measure the effectiveness of the security awareness program provided to call center employees. Which of the following can be used as a KPI?
Correct Answer:
C
- (Topic 5)
Which of the following conditions would be the MOST probable reason for a security project to be rejected by the executive board of an organization?
Correct Answer:
B