
Nov-2022 FREE PECB ISO-IEC-27001-Lead-Implementer PRACTICE QUESTIONS AND ANSWERS UPDATES
DEMO FREE BEFORE YOU BUY ISO-IEC-27001-Lead-Implementer DUMPS
NEW QUESTION 27
Which of these reliability aspects is "completeness" a part of?
- A. Exclusivity
- B. Integrity
- C. Confidentiality
- D. Availability
Answer: B
NEW QUESTION 28
Responsibilities for information security in projects should be defined and allocated to:
- A. specified roles defined in the used project management method of the organization
- B. the project manager
- C. the owner of the involved asset
- D. the InfoSec officer
Answer: A
NEW QUESTION 29
A non-human threat for computer systems is a flood. In which situation is a flood always a relevant threat?
- A. If the riskanalysis has not been carried out.
- B. When the organization is located near a river.
- C. When computer systems are kept in a cellar below ground level.
- D. When the computer systems are not insured.
Answer: C
NEW QUESTION 30
In the context ofcontact with special interest groups, any information-sharing agreements should identify requirements for the protection of _________ information.
- A. Confidential
- B. Authentic
- C. Authorization
- D. Availability
Answer: A
NEW QUESTION 31
Midwest Insurance grades the monthly report of all claimed losses per insured as confidential. What is accomplished if all other reports from this insurance office are also assigned the appropriate grading?
- A. A determination can be made as to which report should be printed firstand which ones can wait a little longer.
- B. The costs for automating are easier to charge to the responsible departments.
- C. Everyone can easily see how sensitive the reports' contents are by consulting the grading label.
- D. Reports can be developed more easily and with fewer errors.
Answer: C
NEW QUESTION 32
Peter works at the company Midwest Insurance. His manager, Linda, asks him to send the terms and conditions for a life insurance policy to Rachel, a client. Who determines the value of the information in the insurance terms and conditions document?
- A. The person who drafted the insurance terms and conditions
- B. The recipient, Rachel
- C. The sender, Peter
- D. The manager, Linda
Answer: B
NEW QUESTION 33
Which of the following measures is a preventive measure?
- A. Shutting down all internet traffic after a hacker has gained access to thecompany systems
- B. Classifying a risk as acceptable because the cost of addressing the threat is higher than the value of the information at risk
- C. Installing a logging system that enables changes in a system to be recognized
- D. Putting sensitive information in a safe
Answer: D
NEW QUESTION 34
What is the objective of classifying information?
- A. Defining different levels of sensitivity into which information may be arranged
- B. Authorizing the use of an information system
- C. Creating alabel that indicates how confidential the information is
- D. Displaying on the document who is permitted access
Answer: A
NEW QUESTION 35
Logging in to a computer system is an access-granting process consisting of three steps: identification, authentication and authorization. What occurs during the first step of this process: identification?
- A. The first step consists of granting access to the information to which the user is authorized.
- B. Thefirst step consists of checking if the user is using the correct certificate.
- C. The first step consists of comparing the password with the registered password.
- D. The first step consists of checking if the user appears on the list of authorized users.
Answer: D
NEW QUESTION 36
What does the Information Security Policy describe?
- A. what the implementation-planning of the information security management system is
- B. which InfoSec-controls have been selected and taken
- C. how the InfoSec-objectives will be reached
- D. which Information Security-procedures are selected
Answer: C
NEW QUESTION 37
You are a consultant and areregularly hired by the Ministry of Defense to perform analysis. Since the assignments are irregular, you outsource the administration of your business to temporary workers. You don't want the temporary workers to have access to your reports.
Which reliability aspect of the information in your reports must you protect?
- A. Confidentiality
- B. Integrity
- C. Availability
Answer: A
NEW QUESTION 38
Why is compliance important forthe reliability of the information?
- A. By meeting the legislative requirements and theregulations of both the government and internal management, an organization shows that it manages its information in a sound manner.
- B. When an organization employs a standard such as the ISO/IEC 27002 and uses it everywhere, it is compliant and thereforeit guarantees the reliability of its information.
- C. When an organization is compliant, it meets the requirements of privacy legislation and, in doing so, protects the reliability of its information.
- D. Compliance is another word for reliability. So, if a company indicates that it is compliant, it means that the information is managed properly.
Answer: A
NEW QUESTION 39
How many domains does ISO / IEC 27002: 2013 have?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: A
NEW QUESTION 40
ISO 27002 provides guidance in the following area
- A. Detailed lists of required policies and procedures
- B. Framework for an overall security andcompliance program
- C. PCI environment scoping
- D. Information handling recommendations
Answer: B
NEW QUESTION 41
What is the best description of a risk analysis?
- A. A risk analysis helps to estimate the risks and develop the appropriate security measures.
- B. A risk analysis is a method of mapping risks without looking at company processes.
- C. A risk analysis calculates the exact financial consequences of damages.
Answer: A
NEW QUESTION 42
Which is a legislative or regulatory act related to information security that can be imposed upon all organizations?
- A. ISO/IEC 27001:2005
- B. Personal data protection legislation
- C. Intellectual Property Rights
- D. ISO/IEC 27002:2005
Answer: B
NEW QUESTION 43
......
Latest PECB ISO-IEC-27001-Lead-Implementer Dumps with Test Engine and PDF: https://www.test4cram.com/ISO-IEC-27001-Lead-Implementer_real-exam-dumps.html
PECB ISO-IEC-27001-Lead-Implementer Exam Dumps Are Essential To Get Good Marks: https://drive.google.com/open?id=1EaRz7Z2Knmt2n6ZDcGbNCHoFeXbUpXL4