ISO-ISMS-LA by GAQM Valid Free Exam Practice Test

Question 1

After a fire has occurred, what repressive measure can be taken?

A. Repairing all systems after the fire B. Buying in a proper fire insurance policy C. Extinguishing the fire after the fire alarm sounds

Correct Answer: C

Question 2

What is the worst possible action that an employee may receive for sharing his or her password or access with others?

A. The lowest rating on his or her performance assessment B. Forced roll off from the project C. Termination D. Three days suspension from work

Correct Answer: C

Question 3

Backup media is kept in the same secure area as the servers. What risk may the organisation be exposed to?

A. Unauthorised persons will have access to both the servers and backups B. After a server crash, it will take extra time to bring it back up again C. Responsibility for the backups is not defined well D. After a fire, the information systems cannot be restored

Correct Answer: D

Question 4

__________ is a software used or created by hackers to disrupt computer operation, gather sensitive information, or gain access to private computer systems.

A. Virus B. Operating System C. Malware D. Trojan

Correct Answer: C

Question 5

There is a scheduled fire drill in your facility. What should you do?

A. None of the above B. Excuse yourself by saying you have an urgent deliverable C. Call in sick D. Participate in the drill

Correct Answer: D

Question 6

A well-executed risk analysis provides a great deal of useful information. A risk analysis has four main objectives.
What is not one of the four main objectives of a risk analysis?

A. Establishing a balance between the costs of an incident and the costs of a security measure B. Implementing counter measures C. Identifying assets and their value D. Determining relevant vulnerabilities and threats

Correct Answer: B

Question 7

Why do we need to test a disaster recovery plan regularly, and keep it up to date?

A. Otherwise remotely stored backups may no longer be available to the security team B. Otherwise the measures taken and the incident procedures planned may not be adequate C. Otherwise it is no longer up to date with the registration of daily occurring faults

Correct Answer: B

Question 8

What is a repressive measure in case of a fire?

A. Putting out a fire after it has been detected by a fire detector B. Repairing damage caused by the fire C. Taking out a fire insurance

Correct Answer: A

Question 9

Which of the following does a lack of adequate security controls represent?

A. Impact B. Asset C. Vulnerability D. Threat

Correct Answer: C

Question 10

Which of the following is a possible event that can have a disruptive effect on the reliability of information?

A. Risk B. Vulnerability C. Dependency D. Threat

Correct Answer: D

GAQM ISO 27001 : 2013 ISMS - Certified Lead Auditor - ISO-ISMS-LA Exam Practice Test